Description
The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the uip_save_site_option() function in all versions up to, and including, 3.5.08. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary plugin settings. Other AJAX actions are also affected.
Published: 2025-11-21
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Modification of Plugin Settings
Action: Immediate Patch
AI Analysis

Impact

The UiPress lite plugin for WordPress has a missing capability check on the uip_save_site_option() AJAX function in all releases up to and including 3.5.08. An authenticated attacker with at least Subscriber-level access can invoke this endpoint and change arbitrary plugin settings. The change can alter dashboard layouts, themes, or other configuration options, potentially disrupting site appearance or behavior without granting direct code execution rights.

Affected Systems

WordPress sites using the UiPress lite | Effortless custom dashboards, admin themes and pages plugin, version 3.5.08 or older, by vendor admintwentytwenty.

Risk and Exploitability

The CVSS score of 4.3 indicates moderate severity, while the EPSS score of less than 1% suggests the likelihood of exploitation is very low at present. The vulnerability is not listed in CISA KEV. Since the exploit requires only a valid authenticated session, the attack vector is an authenticated request; no privilege escalation beyond the existing account level is needed. The impact is confined to configuration changes rather than code execution, keeping the overall risk moderate.

Generated by OpenCVE AI on April 22, 2026 at 12:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the UiPress lite plugin to the latest available version that includes the proper authorization checks for the affected AJAX functions.
  • If an upgrade is not immediately feasible, restrict or disable the impacted AJAX endpoints through server-side access controls or by applying a temporary custom capability filter.
  • Enforce stricter role management to ensure that only trusted users hold Subscriber or higher privileges and audit user permissions regularly.

Generated by OpenCVE AI on April 22, 2026 at 12:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 24 Nov 2025 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 24 Nov 2025 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Uipress
Uipress uipress Lite
Wordpress
Wordpress wordpress
Vendors & Products Uipress
Uipress uipress Lite
Wordpress
Wordpress wordpress

Fri, 21 Nov 2025 07:45:00 +0000

Type Values Removed Values Added
Description The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the uip_save_site_option() function in all versions up to, and including, 3.5.08. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary plugin settings. Other AJAX actions are also affected.
Title UiPress lite | Effortless custom dashboards, admin themes and pages <= 3.5.08 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update
Weaknesses CWE-285
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N'}

Subscriptions

Uipress Uipress Lite
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:06:36.065Z

Reserved: 2025-10-15T16:20:17.289Z

Link: CVE-2025-11815

cve-icon Vulnrichment

Updated: 2025-11-21T16:16:46.159Z

cve-icon NVD

Status : Deferred

Published: 2025-11-21T08:15:51.750

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-11815

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-22T12:30:16Z

Weaknesses