Description
The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 4.7. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on the site as an administrator.
Published: 2025-02-11
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Unauthenticated privilege escalation to administrator
Action: Apply Patch
AI Analysis

Impact

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to and including 4.7 because the plugin does not properly restrict which user metadata can be updated during profile registration. This flaw allows an attacker who does not possess login credentials to create a new user account that is granted full administrator privileges, effectively compromising the entire WordPress site.

Affected Systems

WordPress sites that have the WP Foodbakery plugin installed, specifically versions 4.7 and any earlier releases.

Risk and Exploitability

The vulnerability scores a CVSS of 9.8, indicating critical severity, yet the EPSS score is less than 1%, meaning the current likelihood of exploitation is very low. The CVE is not listed in CISA’s KEV catalog. Attackers can trigger the flaw by simply accessing the registration endpoint without authentication, submitting malicious role data, and having the plugin accept the request. While the score is high, the low exploitation probability and lack of a publicly known exploit reduce immediate risk, but the potential impact remains catastrophic if an attacker succeeds.

Generated by OpenCVE AI on April 21, 2026 at 22:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update WP Foodbakery to the latest available version (greater than 4.7) to remediate the privilege escalation flaw.
  • If an update is unavailable, disable the plugin’s registration feature or modify the theme’s functions to restrict new user roles to non-administrator levels.
  • Audit existing user accounts for unexpected administrator privileges and remove any accounts created without proper authorization.

Generated by OpenCVE AI on April 21, 2026 at 22:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-1529 The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on the site as an administrator.
History

Wed, 08 Apr 2026 18:30:00 +0000

Type Values Removed Values Added
Description The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on the site as an administrator. The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 4.7. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on the site as an administrator.

Fri, 11 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00081}

 epss

{'score': 0.00107}

Tue, 11 Feb 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 11 Feb 2025 07:00:00 +0000

Type Values Removed Values Added
Description The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on the site as an administrator.
Title WP Foodbakery <= 4.7 - Unauthenticated Privilege Escalation in foodbakery_registration_validation
Weaknesses CWE-269
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:26:30.701Z

Reserved: 2025-01-02T20:21:01.364Z

Link: CVE-2025-0180

cve-icon Vulnrichment

Updated: 2025-02-11T15:28:04.615Z

cve-icon NVD

Status : Deferred

Published: 2025-02-11T07:15:29.277

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-0180

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T22:30:06Z

Weaknesses