Description

Missing Authorization vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Client Invoicing by Sprout Invoices: from n/a through <= 20.8.1.

INFO

Published Date :

2025-01-27T14:22:16.064Z

Last Modified :

2026-04-29T09:51:54.235Z

Source :

Patchstack
AFFECTED PRODUCTS

The following products are affected by CVE-2025-24606 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-24606.

URL Resource
https://patchstack.com/database/Wordpress/Plugin/sprout-invoices/vulnerability/wordpress-client-invoicing-by-sprout-invoices-easy-estimates-and-invoices-for-wordpress-plugin-20-8-1-broken-access-control-vulnerability?_s_id=cve cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System