How to fix CVE-2025-47527?

Within 24 hours: Identify all WordPress installations using Icegram Collect plugin and document affected versions. Within 7 days: Implement network segmentation to restrict form endpoints, apply WAF rules to block suspicious access patterns to form submission endpoints, and disable Icegram forms temporarily if possible. Within 30 days: Monitor vendor communication for patch availability and plan immediate deployment upon release; consider alternative form collection solutions if patch timeline is unclear.

Is PHP affected by CVE-2025-47527?

Organizations using the Icegram Collect plugin (versions up to 1.3.18) are exposed to unauthorized access vulnerabilities that could allow attackers to bypass access controls and access sensitive form data and lead information.

CVE-2025-47527

EUVD-2025-17519 HIGH

2025-06-09 [email protected]

7.1

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 19:21 euvd

EUVD-2025-17519

Analysis Generated

Mar 14, 2026 - 19:21 vuln.today

CVE Published

Jun 09, 2025 - 16:15 nvd

HIGH 7.1

Description

Missing Authorization vulnerability in Icegram Icegram Collect - Easy Form, Lead Collection and Subscription plugin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Icegram Collect - Easy Form, Lead Collection and Subscription plugin: from n/a through 1.3.18.

Analysis

Missing Authorization vulnerability (CWE-862) in the Icegram Collect WordPress plugin versions up to 1.3.18 that allows authenticated attackers with low privileges to exploit misconfigured access controls. An attacker with a valid WordPress user account can modify or delete form data and potentially cause service disruption by leveraging inadequate authorization checks on sensitive operations, with no confidentiality impact but significant integrity and availability risks.

Technical Context

This vulnerability exists in the Icegram Collect – Easy Form, Lead Collection and Subscription WordPress plugin, which provides form building and lead collection functionality for WordPress sites. The root cause is CWE-862 (Missing Authorization), indicating that the plugin fails to properly verify whether an authenticated user has the necessary permissions before allowing them to perform sensitive actions. The plugin likely implements WordPress authentication but does not correctly validate authorization at the application logic level, allowing any logged-in user (regardless of role) to access or modify restricted form data, submissions, or configurations. This is distinct from authentication bypass—the user must be logged in—but represents a broken access control implementation common in WordPress plugins that don't properly check user capabilities before CRUD operations.

Affected Products

Icegram Collect – Easy Form, Lead Collection and Subscription (1.0 through 1.3.18 (inclusive))

Remediation

Update plugin via WordPress Admin > Plugins > Updates or download from wordpress.org/plugins/icegram-forms/ Workaround (Temporary): WordPress Admin > Users > Edit roles and capabilities to remove form_submission access for lower-privilege roles Mitigation: Enable audit logging and set up alerts for form data modifications by non-admin users Vendor Advisory: Monitor: wordpress.org/plugins/icegram-forms/ and icegram.com for patch announcements

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +36

POC: 0

CVE-2025-47527 vulnerability details – vuln.today

Back

CVE-2025-47527

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-47527

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code