Exploit for CVE-2025-6934

CVE-2025-6934 🛡️ CVE-2025-6934 - Unauthenticated Privilege Es...

Exploit for CVE-2025-6934

CVE-2025-6934 – Eksploitasi WordPress Opal Estate Pro 📖...

CVE-2025-6934

The Opal Estate Pro – Property Management and Submission plugin for WordPress, used by the FullHouse - Real Estate Responsive WordPress Theme, is vulnerable to privilege escalation via in all versions up to, and including, 1.7.5. This is due to a lack of role restriction during registration in th...

CVE-2025-6934

creationtimestamp| type| source ---|---|--- 2025-07-01 07:09:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/20008 2025-07-01 09:00:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsvdkcymha2p 2025-07-01 21:00:16+00:00| published-proof-of-concept|...

CVE-2025-6934

CVE-2025-6934 targets the Opal Estate Pro WordPress plugin (≤ 1.7.5). The root cause is missing role restrictions in the registration flow (on_register_user), enabling unauthenticated users to register with arbitrary roles, including Administrator. Several connected sources corroborate unauthenti...