CVE-2025-3810

  1. Yack CVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-3810

9.8 /10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

T

he WPBookit plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.0.2. This is due to the plugin not properly validating a user's identity prior to updating their details like password and email through the edit_profile_data() function. This makes it possible for unauthenticated attackers to change arbitrary user's email addresses and passwords, including administrators, and leverage that to gain access to their account.

References
Link Resource
https://plugins.trac.wordpress.org/changeset/3278939/wpbookit/trunk/core/admin/classes/controllers/class.wpb-profile-controller.php Patch
https://www.wordfence.com/threat-intel/vulnerabilities/id/54f1ebfb-67f1-461d-91f1-269b0a2c0653?source=cve Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:iqonic:wpbookit:*:*:*:*:free:wordpress:*:*
History

27 Jun 2025, 17:39

Type Values Removed Values Added
CPE cpe:2.3:a:iqonicdesign:wpbookit:*:*:*:*:*:wordpress:*:* cpe:2.3:a:iqonic:wpbookit:*:*:*:*:free:wordpress:*:*
First Time Iqonic
Iqonic wpbookit

21 May 2025, 14:39

Type Values Removed Values Added
References () https://plugins.trac.wordpress.org/changeset/3278939/wpbookit/trunk/core/admin/classes/controllers/class.wpb-profile-controller.php - () https://plugins.trac.wordpress.org/changeset/3278939/wpbookit/trunk/core/admin/classes/controllers/class.wpb-profile-controller.php - Patch
References () https://www.wordfence.com/threat-intel/vulnerabilities/id/54f1ebfb-67f1-461d-91f1-269b0a2c0653?source=cve - () https://www.wordfence.com/threat-intel/vulnerabilities/id/54f1ebfb-67f1-461d-91f1-269b0a2c0653?source=cve - Third Party Advisory
CPE cpe:2.3:a:iqonicdesign:wpbookit:*:*:*:*:*:wordpress:*:*
First Time Iqonicdesign
Iqonicdesign wpbookit

12 May 2025, 17:32

Type Values Removed Values Added
Summary
  • (es) El complemento PBookit para WordPress es vulnerable a la escalada de privilegios mediante robo de cuenta en todas las versiones hasta la 1.0.2 incluida. Esto se debe a que el complemento no valida correctamente la identidad del usuario antes de actualizar sus datos, como la contraseña y el correo electrónico, mediante la función edit_profile_data(). Esto permite que atacantes no autenticados cambien las direcciones de correo electrónico y las contraseñas de usuarios arbitrarios, incluidos los administradores, y aprovechen esta situación para acceder a sus cuentas.

09 May 2025, 03:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-05-09 03:15

Updated : 2025-06-27 17:39

NVD link : CVE-2025-3810

Mitre link : CVE-2025-3810

CVE.ORG link : CVE-2025-3810

JSON object : View

Products Affected

iqonic

CWE
CWE-639

Authorization Bypass Through User-Controlled Key