CVE-2025-49997

Name of the Vulnerable Software and Affected Versions: Giveaways and Contests by RafflePress versions 1.12.17 and earlier

Description: The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by Access Control Lists (ACLs). This means that certain features or data may be accessible without the necessary permissions.

Recommendations: For versions 1.12.17 and earlier, update to a version later than 1.12.17 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.