{"api_version":"1","generated_at":"2026-04-30T03:09:24+00:00","cve":"CVE-2025-4334","urls":{"html":"https://cve.report/CVE-2025-4334","api":"https://cve.report/api/cve/CVE-2025-4334.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2025-4334","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2025-4334"},"summary":{"title":"Simple User Registration <= 6.3 - Unauthenticated Privilege Escalation","description":"The Simple User Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.3. This is due to insufficient restrictions on user meta values that can be supplied during registration. This makes it possible for unauthenticated attackers to register as an administrator.","state":"PUBLISHED","assigner":"Wordfence","published_at":"2025-06-26 02:15:21","updated_at":"2026-04-08 19:24:09"},"problem_types":["CWE-269","CWE-269 CWE-269 Improper Privilege Management"],"metrics":[{"version":"3.1","source":"security@wordfence.com","type":"Secondary","score":"9.8","severity":"CRITICAL","vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}},{"version":"3.1","source":"CNA","type":"DECLARED","score":"9.8","severity":"CRITICAL","vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","data":{"baseScore":9.8,"baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}}],"references":[{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/c211e0c0-3086-43d2-853c-489f9c42b0ab?source=cve","name":"https://www.wordfence.com/threat-intel/vulnerabilities/id/c211e0c0-3086-43d2-853c-489f9c42b0ab?source=cve","refsource":"security@wordfence.com","tags":["Third Party Advisory"],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://plugins.trac.wordpress.org/browser/wp-registration/trunk/inc/classes/class.register.php#L135","name":"https://plugins.trac.wordpress.org/browser/wp-registration/trunk/inc/classes/class.register.php#L135","refsource":"security@wordfence.com","tags":["Product"],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://plugins.trac.wordpress.org/changeset/3327946/","name":"https://plugins.trac.wordpress.org/changeset/3327946/","refsource":"security@wordfence.com","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2025-4334","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-4334","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"nmedia","product":"Simple User Registration","version":"affected 6.3 semver","platforms":[]}],"timeline":[{"source":"CNA","time":"2025-06-25T13:47:19.000Z","lang":"en","value":"Disclosed"}],"solutions":[],"workarounds":[],"exploits":[],"credits":[{"source":"CNA","value":"Cheng Liu","lang":"en"}],"nvd_cpes":[{"cve_year":"2025","cve_id":"4334","vulnerable":"1","versionEndIncluding":"6.3","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"najeebmedia","cpe5":"simple_user_registration","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"wordpress","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2025","cve_id":"4334","cve":"CVE-2025-4334","epss":"0.336980000","percentile":"0.969450000","score_date":"2026-04-13","updated_at":"2026-04-14 00:12:05"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2025-4334","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","timestamp":"2025-06-27T14:41:10.397745Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2025-06-27T14:51:55.539Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","product":"Simple User Registration","vendor":"nmedia","versions":[{"lessThanOrEqual":"6.3","status":"affected","version":"0","versionType":"semver"}]}],"credits":[{"lang":"en","type":"finder","value":"Cheng Liu"}],"descriptions":[{"lang":"en","value":"The Simple User Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.3. This is due to insufficient restrictions on user meta values that can be supplied during registration. This makes it possible for unauthenticated attackers to register as an administrator."}],"metrics":[{"cvssV3_1":{"baseScore":9.8,"baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-269","description":"CWE-269 Improper Privilege Management","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-04-08T17:20:02.002Z","orgId":"b15e7b5b-3da4-40ae-a43c-f7aa60e62599","shortName":"Wordfence"},"references":[{"url":"https://www.wordfence.com/threat-intel/vulnerabilities/id/c211e0c0-3086-43d2-853c-489f9c42b0ab?source=cve"},{"url":"https://plugins.trac.wordpress.org/browser/wp-registration/trunk/inc/classes/class.register.php#L135"},{"url":"https://plugins.trac.wordpress.org/changeset/3327946/"}],"timeline":[{"lang":"en","time":"2025-06-25T13:47:19.000Z","value":"Disclosed"}],"title":"Simple User Registration <= 6.3 - Unauthenticated Privilege Escalation"}},"cveMetadata":{"assignerOrgId":"b15e7b5b-3da4-40ae-a43c-f7aa60e62599","assignerShortName":"Wordfence","cveId":"CVE-2025-4334","datePublished":"2025-06-26T02:06:34.765Z","dateReserved":"2025-05-05T15:26:58.510Z","dateUpdated":"2026-04-08T17:20:02.002Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2025-06-26 02:15:21","lastModifiedDate":"2026-04-08 19:24:09","problem_types":["CWE-269","CWE-269 CWE-269 Improper Privilege Management"],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:najeebmedia:simple_user_registration:*:*:*:*:*:wordpress:*:*","versionEndIncluding":"6.3","matchCriteriaId":"3DB99F2B-1978-4421-9278-052616BF71C0"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2025","CveId":"4334","Ordinal":"1","Title":"Simple User Registration <= 6.3 - Unauthenticated Privilege Esca","CVE":"CVE-2025-4334","Year":"2025"},"notes":[{"CveYear":"2025","CveId":"4334","Ordinal":"1","NoteData":"The Simple User Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.3. This is due to insufficient restrictions on user meta values that can be supplied during registration. This makes it possible for unauthenticated attackers to register as an administrator.","Type":"Description","Title":"Simple User Registration <= 6.3 - Unauthenticated Privilege Esca"}]}}}