4 matches found
WordPress Buyent Theme (with Buyent Classified Plugin) plugin <= 1.0.7 - Unauthenticated Privilege Escalation via User Registration vulnerability
Unauthenticated Privilege Escalation via User Registration vulnerability discovered by シルAsuna in WordPress Theme Buyent versions = 1.0.7...
CVE-2025-13851
CVE-2025-13851 concerns Buyent Theme with Buyent Classified Plugin (
CVE-2025-13851 Buyent Theme (with Buyent Classified Plugin) <= 1.0.7 - Unauthenticated Privilege Escalation via User Registration
The Buyent Classified plugin for WordPress bundled with Buyent theme is vulnerable to privilege escalation via user registration in all versions up to, and including, 1.0.7. This is due to the plugin not validating or restricting the user role during registration via the REST API endpoint. This...
CVE-2025-13851 Buyent Theme (with Buyent Classified Plugin) <= 1.0.7 - Unauthenticated Privilege Escalation via User Registration
The Buyent Classified plugin for WordPress bundled with Buyent theme is vulnerable to privilege escalation via user registration in all versions up to, and including, 1.0.7. This is due to the plugin not validating or restricting the user role during registration via the REST API endpoint. This...