Vulnerabilities and security researches forpeprodev-ups peprodev-ups
Direction: descendingMay 08, 2025
PeproDev Ultimate Profile Solutions # CVE-2025-3844
- CVE, Research URL
- Home page URL
- Application
- Date
- May 07, 2025
- Research Description
- The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to Authentication Bypass in versions 1.9.1 to 7.5.2. This is due to handel_ajax_req() function not having proper restrictions on the change_user_meta functionality that makes it possible to set a OTP code and subsequently log in with that OTP code. This makes it possible for unauthenticated attackers to login as other users on the site, including administrators.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
PeproDev Ultimate Profile Solutions # CVE-2025-3921
- CVE, Research URL
- Home page URL
- Application
- Date
- May 07, 2025
- Research Description
- The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handel_ajax_req() function in versions 1.9.1 to 7.5.2. This makes it possible for unauthenticated attackers to update arbitrary user's metadata which can be leveraged to block an administrator from accessing their site when wp_capabilities is set to 0.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
PeproDev Ultimate Profile Solutions # CVE-2025-3924
- CVE, Research URL
- Home page URL
- Application
- Date
- May 07, 2025
- Research Description
- The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to unauthorized access of data via its publicly exposed reset-password endpoint. The plugin looks up the 'valid_email' value based solely on a supplied username parameter, without verifying that the requester is associated with that user account. This allows unauthenticated attackers to enumerate email addresses for any user, including administrators.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable