Primary

Context

bPlugins Tiktok Feed Broken Access Control Vulnerability

Vulnerability

A broken access control vulnerability has been identified in the bPlugins Tiktok Feed WordPress plugin, affecting versions through 1.0.21. This vulnerability allows users to access functionalities that are not properly restricted by access control lists (ACLs).

Impact

Exploitation of this vulnerability could lead to unauthorized access to certain functionalities within the Tiktok Feed plugin, potentially allowing users to perform actions or access data that should be restricted.

Remediation

Users of the bPlugins Tiktok Feed WordPress plugin should update to version 1.0.22 or later to address this vulnerability. Patchstack users can enable auto-updates for vulnerable plugins.

Added: Aug 28, 2025, 1:39 PM

Updated: Aug 28, 2025, 1:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

bPlugins Tiktok Feed Broken Access Control Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating