CVE-2025-69024 MEDIUM

CVE-2025-69024: WordPress BizPrint plugin <= 4.6.7 - Broken Access Control vulnerability

Vendor Bizswoop

Product BizPrint

Weakness CWE-862 · Missing authorization

Published December 30, 2025

Last update April 28, 2026

View on NVD All CVEs

CVSS base score

6.5/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

Missing Authorization vulnerability in bizswoop BizPrint print-google-cloud-print-gcp-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BizPrint: from n/a through <= 4.6.7.

Key dates

02Disclosure timeline

December 30, 2025 CVE published

April 28, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-69024

Related vulnerabilities

04Related CVE

CVE-2023-51524 WordPress weForms plugin <= 1.6.18 - Broken Access Control vulnerability CVE-2025-48282 WordPress Majestic Support plugin <= 1.1.0 - Broken Access Control Vulnerability CVE-2023-30479 WordPress Stamped.io Product Reviews & UGC for WooCommerce plugin <= 2.3.2 - Broken Access Control vulnerability CVE-2025-66085 WordPress Arconix Shortcodes plugin <= 2.1.18 - Broken Access Control vulnerability CVE-2025-22730 WordPress Ksher plugin <= 1.1.2 - Broken Access Control vulnerability