CVE-2025-2594

Published Apr 22, 2025

Last updated 2 months ago

CVSS high 8.1

Overview

Description: The User Registration & Membership WordPress plugin before 4.1.3 does not properly validate data in an AJAX action when the Membership Addon is enabled, allowing attackers to authenticate as any user, including administrators, by simply using the target account's user ID.
Source: contact@wpscan.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Secondary
Base score: 8.1
Impact score: 5.9
Exploitability score: 2.2
Vector string: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:wpeverest:user_registration_\\&_membership:*:*:*:*:free:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6640CB90-56BC-4065-BF6D-2FE498EA0B30",
            "versionEndExcluding": "4.1.3"
          },
          {
            "criteria": "cpe:2.3:a:wpeverest:user_registration_\\&_membership:*:*:*:*:pro:wordpress:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2B24846-7730-436E-B383-B7026269929F",
            "versionEndExcluding": "5.1.3"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References