Description
The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 101.2.1. This is due to the plugin allowing a user to update the user role through the $user->set_role() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administrator.
Published: 2025-11-27
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Patch
AI Analysis

Impact

The vulnerability in the Tiger theme for WordPress allows authenticated users with Subscriber-level privileges or higher to elevate their account to an administrator. This is caused by the theme's plugin permitting role updates via the $user->set_role() function. The resulting exploit grants full administrative rights, enabling the attacker to modify site content, install malicious plugins, and access sensitive data, thereby compromising confidentiality, integrity, and availability of the WordPress installation.

Affected Systems

All installations of the Tiger WordPress theme with version 101.2.1 or earlier are affected. The theme, provided by DirectoryThemes, is used on WordPress sites that rely on this social network theme.

Risk and Exploitability

The CVSS score of 8.8 indicates a high severity for privilege escalation. The EPSS score of less than 1% suggests exploitation is currently rare, and the vulnerability is not listed in CISA KEV. The attack vector requires an authenticated user, so an attacker must have at least Subscriber access and exploit the $user->set_role() function exposed by the theme. Once executed, the attacker can gain administrator rights and control over the site.

Generated by OpenCVE AI on April 21, 2026 at 17:56 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Tiger theme to a version higher than 101.2.1
  • If an update is not possible, disable or remove the theme until the issue is resolved
  • Review and enforce least privilege for all user accounts and monitor for unauthorized role changes

Generated by OpenCVE AI on April 21, 2026 at 17:56 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 28 Nov 2025 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 27 Nov 2025 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Directorythemes
Directorythemes tiger
Wordpress
Wordpress wordpress
Vendors & Products Directorythemes
Directorythemes tiger
Wordpress
Wordpress wordpress

Thu, 27 Nov 2025 04:45:00 +0000

Type Values Removed Values Added
Description The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 101.2.1. This is due to the plugin allowing a user to update the user role through the $user->set_role() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administrator.
Title Tiger <= 101.2.1 - Authenticated (Subscriber+) Privilege Escalation
Weaknesses CWE-269
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Directorythemes Tiger
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:57:32.709Z

Reserved: 2025-11-25T18:52:49.036Z

Link: CVE-2025-13680

cve-icon Vulnrichment

Updated: 2025-11-28T14:40:19.585Z

cve-icon NVD

Status : Deferred

Published: 2025-11-27T05:16:15.253

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-13680

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T18:00:11Z

Weaknesses