Key Information Vulnerability Name: WordPress StyleAI Plugin <= 1.0.4 is vulnerable to Broken Access Control Priority: Medium priority Affected Versions: <= 1.0.4 Fix Status: No official fix available Risk: This vulnerability is moderately dangerous and expected to become exploited. Vulnerability Type: Broken Access Control Description: A broken access control issue refers to a missing authorization, authentication, or nonce token check on a function that could lead to an unprivileged user executing a certain higher-privileged action. Solution: Automatically mitigate vulnerabilities and keep your websites safe. Patchstack has issued a virtual patch to mitigate this issue by blocking any attacks until an official fix becomes available. Timeline: - Reported by chMe On: 16 Apr 2025 - Early warning sent out to Patchstack customers: 22 May 2025 - Published by Patchstack: 23 May 2025