Plateforme
wordpress
Composant
vehica-core
Corrigé dans
1.0.98
CVE-2025-3105 is a privilege escalation vulnerability discovered in the Vehica Core plugin for WordPress, a component of the Vehica - Car Dealer & Listing WordPress Theme. This flaw allows authenticated attackers, even those with Subscriber-level access, to escalate their privileges to Administrator. The vulnerability affects versions 1.0.0 through 1.0.97, and a patch is available in version 1.0.98.
The impact of CVE-2025-3105 is significant. An attacker who can successfully exploit this vulnerability gains complete administrative control over the WordPress site. This includes the ability to modify content, install malicious plugins, access sensitive data (customer information, financial records), and potentially compromise the entire server. The attacker could also use the compromised site to launch further attacks against other systems on the network, effectively expanding the blast radius. This vulnerability is similar in impact to other privilege escalation flaws where lower-privileged users can gain full control of a system.
CVE-2025-3105 was publicly disclosed on April 4, 2025. No KEV listing is currently available. There are no known public proof-of-concept exploits at this time, but the ease of exploitation (requiring only authenticated Subscriber access) suggests a potential for rapid exploitation if a PoC is released. Monitor security advisories and threat intelligence feeds for any indications of active exploitation campaigns.
WordPress websites using the Vehica - Car Dealer & Listing WordPress Theme and relying on the Vehica Core plugin are at risk. Specifically, sites with a large number of Subscriber-level users or those with lax user permission controls are particularly vulnerable. Shared hosting environments where multiple websites share the same server infrastructure could also be affected if one site is compromised.
• wordpress / composer / npm:
grep -r 'update_user_meta' /var/www/html/wp-content/plugins/vehica-core/• wordpress / composer / npm:
wp plugin list --status=active | grep vehica-core• wordpress / composer / npm:
wp plugin update vehica-core --version=1.0.98• wordpress / composer / npm:
wp option get admin_userdisclosure
Statut de l'Exploit
EPSS
0.26% (percentile 49%)
CISA SSVC
Vecteur CVSS
The primary mitigation for CVE-2025-3105 is to immediately upgrade the Vehica Core plugin to version 1.0.98 or later. If upgrading is not immediately possible due to compatibility issues or breaking changes, consider restricting access to sensitive areas of the WordPress admin panel for users with Subscriber roles. Implement stricter user permission controls and regularly audit user roles to identify and remove any unauthorized elevated privileges. While not a direct fix, a Web Application Firewall (WAF) configured to block suspicious requests targeting user meta modification endpoints could provide a temporary layer of protection. After upgrading, verify the fix by attempting to escalate a Subscriber account to Administrator using the known exploit vector.
Actualice el plugin Vehica Core a la versión 1.0.98 o superior para mitigar la vulnerabilidad de escalada de privilegios. Esta actualización corrige la validación incorrecta de los metadatos del usuario, previniendo que atacantes con acceso de suscriptor puedan escalar sus privilegios a administrador.
Analyses de vulnérabilités et alertes critiques directement dans votre boîte mail.
CVE-2025-3105 is a HIGH severity vulnerability in the Vehica Core WordPress plugin allowing authenticated users with Subscriber access to escalate to Administrator due to improper user meta validation.
You are affected if your WordPress site uses the Vehica Core plugin in versions 1.0.0 through 1.0.97.
Upgrade the Vehica Core plugin to version 1.0.98 or later to remediate the vulnerability. Consider temporary mitigation steps like restricting user permissions if immediate upgrade is not possible.
There are currently no known public exploits or confirmed active exploitation campaigns, but the ease of exploitation suggests a potential risk.
Refer to the Vehica website and WordPress plugin repository for the official advisory and update information.
Téléverse ton fichier de dépendances et découvre instantanément si cette CVE et d'autres te touchent.
Téléverse ton fichier de dépendances et découvre instantanément si cette CVE et d'autres te touchent.