CVE-2025-11985
BaseFortify
Publication date: 2025-11-21
Last updated on: 2025-11-21
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | realty_portal | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Realty Portal plugin for WordPress (versions 0.1 to 0.4.1) where a missing capability check on the 'rp_save_property_settings' function allows authenticated users with Subscriber-level access or higher to modify arbitrary options on the WordPress site. Attackers can exploit this to escalate their privileges by changing the default user role to administrator and enabling user registration, thereby gaining administrative access to the site.
How can this vulnerability impact me? :
The vulnerability can allow attackers with low-level access to escalate their privileges to administrator, potentially taking full control of the WordPress site. This can lead to unauthorized changes, data manipulation, and complete compromise of the website's security and functionality.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately update the Realty Portal plugin to a version later than 0.4.1 where the missing capability check is fixed. Additionally, review and restrict user roles and permissions, especially ensuring that Subscriber-level users cannot modify critical settings. Disable user registration if not needed to prevent attackers from creating administrative accounts.