CVE-2025-4607
PSW Front-end Login & Registration <= 1.12 - Insufficiently Random Values to Unauthenticated Account Takeover/Privilege Escalation via customer_registration Function
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
PSW Front-end Login & Registration <= 1.12 - Insufficiently Random Values to Unauthenticated Account Takeover/Privilege Escalation via customer_registration Function
The PSW Front-end Login & Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.12 via the customer_registration() function. This is due to the use of a weak, low-entropy OTP mechanism in the forget() function. This makes it possible for unauthenticated attackers to initiate a password reset for any user, including administrators, and elevate their privileges for full site takeover.
Reserved 2025-05-12 | Published 2025-05-31 | Updated 2025-06-02 | Assigner WordfenceCWE-330 Use of Insufficiently Random Values
| 2025-05-30: | Disclosed |
Kenneth Dunn
www.wordfence.com/...-0682-4a41-a432-afbcb50144e8?source=cve
plugins.trac.wordpress.org/...sitegeneralfeatures-public.php
wordpress.org/plugins/psw-login-and-registration/
plugins.trac.wordpress.org/...sitegeneralfeatures-public.php
plugins.trac.wordpress.org/...sitegeneralfeatures-public.php
Support options
