CVE-2025-63002 - WordPress Sermon Manager plugin <= 2.30.0 - broken access control vulnerability

CVE ID : CVE-2025-63002 Published : Dec. 18, 2025, 5:15 p.m. | 30 minutes ago Description : Missing Authorization vulnerability in wpforchurch Sermon Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sermon Manager: from n/a through 2.30.0. Severity: 5.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Source: Telegram CVE Monitor