CVE-2025-68556

CVE-2025-68556

Name

CVE-2025-68556

Description

Missing Authorization vulnerability in VillaTheme HAPPY allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HAPPY: from n/a through 1.0.9.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
vdb-entry	https://vdp.patchstack.com/database/wordpress/plugin/happy-helpdesk-support-ticket-system/vulnerability/wordpress-happy-plugin-1-0-9-broken-access-control-vulnerability?_s_id=cve
audit@patchstack.com	https://patchstack.com/database/wordpress/plugin/happy-helpdesk-support-ticket-system/vulnerability/wordpress-happy-plugin-1-0-9-broken-access-control-vulnerability?_s_id=cve

Type

URI

vdb-entry

https://vdp.patchstack.com/database/wordpress/plugin/happy-helpdesk-support-ticket-system/vulnerability/wordpress-happy-plugin-1-0-9-broken-access-control-vulnerability?_s_id=cve

audit@patchstack.com

https://patchstack.com/database/wordpress/plugin/happy-helpdesk-support-ticket-system/vulnerability/wordpress-happy-plugin-1-0-9-broken-access-control-vulnerability?_s_id=cve

CPE URI	Source package	Min version	Max version
	happy	== n/a	== None

CPE URI

Source package

Min version

Max version

happy

== n/a

== None

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
happy	edge-community	1.21.0-r2	Celeste <cielesti@protonmail.com>	possibly vulnerable
happy	3.23-community	1.21.0-r2	Celeste <cielesti@protonmail.com>	possibly vulnerable
happy	3.22-community	1.21.0-r2	Celeste <cielesti@protonmail.com>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

happy

edge-community

1.21.0-r2

Celeste <cielesti@protonmail.com>

possibly vulnerable

happy

3.23-community