CVE-2025-30944 identifies a missing authorization vulnerability in the Essekia Tablesome Table Premium WordPress plugin, affecting versions up to 1.1.23. The flaw arises because certain functionalities within the plugin are not properly constrained by Access Control Lists (ACLs), allowing unauthenticated attackers to invoke these functions remotely. This results in unauthorized access to sensitive data or features that should be restricted, compromising confidentiality. The vulnerability has a CVSS 3.1 base score of 7.5, reflecting its high severity due to network exploitability (AV:N), low attack complexity (AC:L), no privileges required (PR:N), and no user interaction needed (UI:N). The scope is unchanged (S:U), and the impact is high on confidentiality (C:H), with no impact on integrity (I:N) or availability (A:N). No known exploits are currently reported in the wild, but the absence of authentication requirements and the direct access to protected functionality make exploitation straightforward. The vulnerability was reserved in March 2025 and published in October 2025, indicating recent discovery. No official patches or mitigations are currently linked, suggesting organizations must rely on interim controls until vendor updates are released. The plugin is commonly used in WordPress environments to enhance table functionalities, often in business or data-centric websites, increasing the risk of sensitive data exposure if exploited.

For European organizations, this vulnerability poses a significant risk of unauthorized data disclosure, potentially exposing sensitive business or customer information. Since the exploit requires no authentication or user interaction, attackers can remotely access protected functionalities, bypassing normal security controls. This could lead to breaches of confidentiality, regulatory non-compliance (e.g., GDPR), reputational damage, and potential financial losses. Organizations relying on Tablesome Table Premium for data presentation or management on their websites are particularly vulnerable. The lack of impact on integrity and availability means attackers cannot modify or disrupt services directly, but the confidentiality breach alone is critical. The threat is heightened in sectors with stringent data protection requirements such as finance, healthcare, and e-commerce. Additionally, the ease of exploitation increases the likelihood of automated scanning and attacks targeting vulnerable installations across Europe.

1. Monitor Essekia’s official channels for security patches addressing CVE-2025-30944 and apply updates immediately upon release. 2. Until patches are available, implement web application firewall (WAF) rules to restrict access to the vulnerable plugin’s endpoints, limiting exposure to trusted IPs or authenticated users only. 3. Conduct thorough access control reviews on all web applications using Tablesome Table Premium to ensure no unauthorized access paths exist. 4. Employ network segmentation to isolate critical web servers hosting the plugin from public networks where feasible. 5. Enable detailed logging and monitoring of web server and application logs to detect unusual or unauthorized access attempts targeting the plugin’s functionality. 6. Educate web administrators and developers about the risks of missing authorization vulnerabilities and enforce secure coding and plugin usage practices. 7. Consider temporary disabling or removing the plugin if it is not essential, to eliminate the attack surface until a fix is available.