mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-30 04:59:31 +02:00
0xMarcio
1.1 KiB
1.1 KiB
CVE-2025-2563
Description
The User Registration & Membership WordPress plugin before 4.1.2 does not prevent users to set their account role when the Membership Addon is enabled, leading to a privilege escalation issue and allowing unauthenticated users to gain admin privileges
POC
Reference
Github
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/Lern0n/Lernon-POC
- https://github.com/eeeeeeeeee-code/POC
- https://github.com/laoa1573/wy876
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/oLy0/Vulnerability
- https://github.com/plzheheplztrying/cve_monitor
- https://github.com/ubaydev/CVE-2025-2563