CVE-2025-4606
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-07-09

Last updated on: 2025-07-10

Assigner: Wordfence

Description
The Sala - Startup & SaaS WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.1.4. This is due to the theme not properly validating a user's identity prior to updating their details like password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-09
Last Modified
2025-07-10
Generated
2026-05-07
AI Q&A
2025-07-09
EPSS Evaluated
2026-05-05
NVD
CVE-2025-4606
EUVD
EUVD-2025-20770
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
wordpresstheme sala *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-620 When setting a new password for a user, the product does not require knowledge of the original password, or using another form of authentication.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

The Sala - Startup & SaaS WordPress Theme has a vulnerability that allows unauthenticated attackers to escalate privileges by taking over accounts. This happens because the theme does not properly verify a user's identity before allowing password updates. As a result, attackers can change any user's password, including administrators, and gain access to their accounts.


How can this vulnerability impact me? :

This vulnerability can have a severe impact as attackers can gain unauthorized access to user accounts, including administrator accounts. This can lead to full control over the affected WordPress site, allowing attackers to manipulate content, steal data, or disrupt services.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart