CVE-2025-13538
BaseFortify
Publication date: 2025-11-27
Last updated on: 2025-11-27
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | findall_membership | * |
| wordpress | findall_listing | 1.0.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-269 | The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the FindAll Listing plugin for WordPress (up to version 1.0.5) and allows unauthenticated attackers to escalate their privileges. Specifically, the function 'findall_listing_user_registration_additional_params' does not restrict the user roles that can be assigned during registration. As a result, an attacker can register with the 'administrator' role and gain full administrator access to the site. Exploitation requires that the FindAll Membership plugin is also activated, as it handles user registration.
How can this vulnerability impact me? :
If exploited, this vulnerability allows an attacker to gain administrator-level access to your WordPress site without authentication. This means the attacker can fully control the site, including modifying content, installing malicious code, stealing sensitive data, or disrupting site operations. The impact is critical, affecting confidentiality, integrity, and availability of the site.