How to fix CVE-2025-30990?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

Is ThemeHunk ThemeHunk affected by CVE-2025-30990?

Organizations using Missing Authorization vulnerability in ThemeHunk ThemeHunk should be aware of moderate risk from CVE-2025-30990, a missing authorization vulnerability rated CVSS 4.3. Attackers could gain access beyond their authorized level.

CVE-2025-30990

EUVD-2025-17233 MEDIUM

ThemeHunk ThemeHunk – Missing Authorization (CWE-862)

2025-06-06 [email protected]

Authentication Bypass

5.4

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 18:10 euvd

EUVD-2025-17233

CVE Published

Jun 06, 2025 - 13:15 nvd

MEDIUM 5.4

DescriptionNVD

Missing Authorization vulnerability in ThemeHunk ThemeHunk allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ThemeHunk: from n/a through 1.1.1.

Analysis

Missing Authorization vulnerability in ThemeHunk ThemeHunk allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ThemeHunk: from n/a through 1.1.1.

CVE-2025-30990 vulnerability details – vuln.today

Back

CVE-2025-30990

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

Analysis

Share

External POC / Exploit Code