CVE-2025-24734
WordPress Better Find and Replace plugin <= 1.6.7 - Privilege Escalation vulnerabilityMissing Authorization vulnerability in CodeSolz Better Find and Replace allows Privilege Escalation. This issue affects Better Find and Replace: from n/a through 1.6.7.
We have discovered 9,161 live websites that are affected by CVE-2025-24734.
Affected Software
| Product |  Real Time Auto Find And Replace |
| Category | Wordpress Plugins |
| Vulnerable Domains | 9,161 live websites (72.19% of Real Time Auto Find And Replace install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 60 versions ( 96.77% of all versions) |
Common Weakness Enumeration
CWE-862 Missing AuthorizationDetails
- Published - Jan 27, 2025
- Updated - Feb 12, 2025
Credits
- Ananda Dhakal (Patchstack) (finder)
CWE
CVE References
CWE References
CVE-2025-24734 usage by Country
 United States | 4,582 websites |
 Germany | 705 websites |
 GB | 577 websites |
 France | 287 websites |
 Cyprus | 257 websites |
 Japan | 186 websites |
 Australia | 173 websites |
 Russia | 170 websites |
 Italy | 164 websites |
 Netherlands | 154 websites |
CVE-2025-24734 usage by TLD
| .com | 4,610 websites |
| .co.uk | 541 websites |
| .org | 468 websites |
| .com.au | 269 websites |
| .net | 246 websites |
| .de | 197 websites |
| .it | 155 websites |
| .ca | 154 websites |
| .nl | 133 websites |
| .ru | 123 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2025-24734
Top websites that are affected by CVE-2025-24734. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***********************.com | United States | *,*** | |
| ***.com | United States | *,*** | |
| ****************.com | United States | *,*** | |
| ************.com | United States | **,*** | |
| *****.com | United States | **,*** | |
| *****.com | United States | **,*** | |
| **********.com | United States | **,*** | |
| ***********.org | United States | **,*** | |
| *************.com | United States | **,*** | |
| **********.com | United States | **,*** |
FAQ
CVE-2025-24734 is Missing Authorization in Real Time Auto Find And Replace
A total of 9,161 websites have been identified as vulnerable to CVE-2025-24734, discovered through global website indexing conducted by WebTechSurvey.
Real Time Auto Find And Replace is susceptible to CVE-2025-24734 vulnerability.
Real Time Auto Find And Replace versions before, and including, 1.6.7 are vulnerable to CVE-2025-24734.