CVE-2025-7040
BaseFortify
Publication date: 2025-09-06
Last updated on: 2025-09-08
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cloud_infrastructure_services | cloud_sso_single_sign_on | 1.0.19 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Cloud SAML SSO plugin for WordPress, where a missing capability check on the 'set_organization_settings' action allows unauthenticated attackers to modify organization settings. The plugin's csso_handle_actions() function reads client-supplied POST parameters and passes them directly to update_option() without verifying user permissions or using a CSRF nonce. This enables attackers to change critical configurations such as toggling signing and encryption.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can change critical configuration settings of the Cloud SAML SSO plugin, potentially breaking the Single Sign-On (SSO) flow and causing a denial-of-service. This unauthorized modification can disrupt authentication processes and impact the availability of services relying on SSO.