cleantalk
Vulnerabilities and Security Researches

Download Manager and Payment Form WordPress Plugin – WP SmartPay, CVE-2025-3848

CVE, Research URL

CVE-2025-3848

Home page URL

Security reports for Download Manager and Payment Form WordPress Plugin – WP SmartPay

Application

Download Manager and Payment Form WordPress Plugin – WP SmartPay

Published on
Jul 02, 2025
Research Description
The Download Manager and Payment Form WordPress Plugin – WP SmartPay plugin for WordPress is vulnerable to privilege escalation via account takeover in versions 1.1.0 to 2.7.13. This is due to the plugin not properly validating a user's identity prior to updating their email through the update() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
Affected versions
max 1.1.0.
Status
vulnerable
Previous vulnerability researches
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-3848) , Jul 04, 2025
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-25171) , Jul 02, 2025
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-3851) , Jul 02, 2025
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-32689) , Apr 14, 2025
New vulnerability
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025
Cryptocurrency Payment Gateway for WooCommerce (CVE-2025-12392) , Dec 12, 2025
Wbcom Designs – Private Community for BuddyPress (CVE-2025-67582) , Dec 12, 2025
WP-Walla (CVE-2025-12589) , Dec 12, 2025
Master Addons for Elementor (CVE-2025-63055) , Dec 12, 2025