CVE-2025-6994
BaseFortify
Publication date: 2025-08-06
Last updated on: 2025-08-06
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| smartdatasoft | reveal_listing | 3.3 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-269 | The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in the Reveal Listing plugin for WordPress allows unauthenticated users who register new accounts to set their own user role by supplying the 'listing_user_role' field. This means attackers can create accounts with administrator privileges, leading to privilege escalation.
How can this vulnerability impact me? :
This vulnerability can allow attackers to gain administrator-level access to your WordPress site without authentication. This can lead to full control over the site, including modifying content, stealing data, installing malicious code, or disrupting services.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately update the Reveal Listing plugin to a version later than 3.3 where the issue is fixed. Additionally, review and restrict user registration processes to prevent users from setting their own roles, especially the administrator role. Disable or remove the 'listing_user_role' field from registration forms if possible.