CVE-2025-3452

The SecuPress Free — WordPress Security plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'secupress_reinstall_plugins_admin_ajax_cb' function in all versions up to, and including, 2.3.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to install arbitrary plugins.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://plugins.trac.wordpress.org/browser/secupress/trunk/free/modules/plugins-themes/tools.php#L686
https://plugins.trac.wordpress.org/changeset/3283453/
https://www.wordfence.com/threat-intel/vulnerabilities/id/d9125873-aedd-4334-b8e0-74b67d301904?source=cve

Configurations

No configuration.

History

29 Apr 2025, 13:52

Type	Values Removed	Values Added
Summary		(es) El complemento SecuPress Free — WordPress Security para WordPress es vulnerable a la modificación no autorizada de datos debido a la falta de comprobación de la función 'secupress_reinstall_plugins_admin_ajax_cb' en todas las versiones hasta la 2.3.9 incluida. Esto permite que atacantes autenticados, con acceso de suscriptor o superior, instalen complementos arbitrarios.

29 Apr 2025, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-29 09:15

Updated : 2025-04-29 13:52

NVD link : CVE-2025-3452

Mitre link : CVE-2025-3452

CVE.ORG link : CVE-2025-3452

JSON object : View

Products Affected

No product.

CWE

CWE-862

Missing Authorization

4.3 /10