27Oca
CVE-2025-24606 | Sprout Invoices Client Invoicing Plugin up to 20.8.1 on WordPress authorization
A vulnerability, which was classified as problematic, was found in Sprout Invoices Client Invoicing Plugin up to 20.8.1 on WordPress. This affects an unknown part. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2025-24606. It is possible to initiate the attack remotely. There is no exploit available.