Vehica Core <= 1.0.97 - Élévation de privilèges authentifiée (Abonné+)
Plateforme
wordpress
Composant
vehica-core
Corrigé dans
1.0.98
CVE-2025-3105 is a privilege escalation vulnerability discovered in the Vehica Core plugin for WordPress, a component of the Vehica - Car Dealer & Listing WordPress Theme. This flaw allows authenticated attackers, even those with Subscriber-level access, to escalate their privileges to Administrator. The vulnerability affects versions 1.0.0 through 1.0.97, and a patch is available in version 1.0.98.
Détecte cette CVE dans ton projet
Téléverse ton fichier de dépendances et découvre instantanément si cette CVE et d'autres te touchent.
Impact et Scénarios d'Attaquetraduction en cours…
The impact of CVE-2025-3105 is significant. An attacker who can successfully exploit this vulnerability gains complete administrative control over the WordPress site. This includes the ability to modify content, install malicious plugins, access sensitive data (customer information, financial records), and potentially compromise the entire server. The attacker could also use the compromised site to launch further attacks against other systems on the network, effectively expanding the blast radius. This vulnerability is similar in impact to other privilege escalation flaws where lower-privileged users can gain full control of a system.
Contexte d'Exploitationtraduction en cours…
CVE-2025-3105 was publicly disclosed on April 4, 2025. No KEV listing is currently available. There are no known public proof-of-concept exploits at this time, but the ease of exploitation (requiring only authenticated Subscriber access) suggests a potential for rapid exploitation if a PoC is released. Monitor security advisories and threat intelligence feeds for any indications of active exploitation campaigns.
Qui Est à Risquetraduction en cours…
WordPress websites using the Vehica - Car Dealer & Listing WordPress Theme and relying on the Vehica Core plugin are at risk. Specifically, sites with a large number of Subscriber-level users or those with lax user permission controls are particularly vulnerable. Shared hosting environments where multiple websites share the same server infrastructure could also be affected if one site is compromised.
Étapes de Détectiontraduction en cours…
• wordpress / composer / npm:
grep -r 'update_user_meta' /var/www/html/wp-content/plugins/vehica-core/• wordpress / composer / npm:
wp plugin list --status=active | grep vehica-core• wordpress / composer / npm:
wp plugin update vehica-core --version=1.0.98• wordpress / composer / npm:
wp option get admin_userChronologie de l'Attaque
- Disclosure
disclosure
Renseignement sur les Menaces
Statut de l'Exploit
EPSS
0.26% (percentile 49%)
CISA SSVC
Vecteur CVSS
Que signifient ces métriques?
- Attack Vector
- Réseau — exploitable à distance via internet. Aucun accès physique ou local requis.
- Attack Complexity
- Faible — aucune condition spéciale requise. Exploitable de manière fiable.
- Privileges Required
- Faible — tout compte utilisateur valide est suffisant.
- User Interaction
- Aucune — attaque automatique et silencieuse. La victime ne fait rien.
- Scope
- Inchangé — impact limité au composant vulnérable.
- Confidentiality
- Élevé — perte totale de confidentialité. L'attaquant peut lire toutes les données.
- Integrity
- Élevé — l'attaquant peut écrire, modifier ou supprimer toutes les données.
- Availability
- Élevé — panne complète ou épuisement des ressources. Déni de service total.
Logiciel Affecté
Classification de Faiblesse (CWE)
Chronologie
- Réservé
- Publiée
- Modifiée
- EPSS mis à jour
Mitigation et Contournementstraduction en cours…
The primary mitigation for CVE-2025-3105 is to immediately upgrade the Vehica Core plugin to version 1.0.98 or later. If upgrading is not immediately possible due to compatibility issues or breaking changes, consider restricting access to sensitive areas of the WordPress admin panel for users with Subscriber roles. Implement stricter user permission controls and regularly audit user roles to identify and remove any unauthorized elevated privileges. While not a direct fix, a Web Application Firewall (WAF) configured to block suspicious requests targeting user meta modification endpoints could provide a temporary layer of protection. After upgrading, verify the fix by attempting to escalate a Subscriber account to Administrator using the known exploit vector.
Comment corrigertraduction en cours…
Actualice el plugin Vehica Core a la versión 1.0.98 o superior para mitigar la vulnerabilidad de escalada de privilegios. Esta actualización corrige la validación incorrecta de los metadatos del usuario, previniendo que atacantes con acceso de suscriptor puedan escalar sus privilegios a administrador.
Newsletter Sécurité CVE
Analyses de vulnérabilités et alertes critiques directement dans votre boîte mail.
Questions fréquentestraduction en cours…
What is CVE-2025-3105 — Privilege Escalation in Vehica Core?
CVE-2025-3105 is a HIGH severity vulnerability in the Vehica Core WordPress plugin allowing authenticated users with Subscriber access to escalate to Administrator due to improper user meta validation.
Am I affected by CVE-2025-3105 in Vehica Core?
You are affected if your WordPress site uses the Vehica Core plugin in versions 1.0.0 through 1.0.97.
How do I fix CVE-2025-3105 in Vehica Core?
Upgrade the Vehica Core plugin to version 1.0.98 or later to remediate the vulnerability. Consider temporary mitigation steps like restricting user permissions if immediate upgrade is not possible.
Is CVE-2025-3105 being actively exploited?
There are currently no known public exploits or confirmed active exploitation campaigns, but the ease of exploitation suggests a potential risk.
Where can I find the official Vehica advisory for CVE-2025-3105?
Refer to the Vehica website and WordPress plugin repository for the official advisory and update information.
Ton projet est-il affecté ?
Téléverse ton fichier de dépendances et découvre instantanément si cette CVE et d'autres te touchent.