CVE-2025-1564 - Vulnerability Details

- SetSail Membership <= 1.0.3 - Authentication Bypass via Account Takeover

Description

The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.

Published: 2025-03-01

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The SetSail Membership plugin for WordPress fails to properly verify a user's identity through its social login feature, allowing any unauthenticated user to authenticate as any account, including administrators. This authentication failure permits an attacker to gain full control of the WordPress site, access sensitive data, modify content or settings, and potentially compromise other connected systems. The weakness matches CWE‑288, reflecting improper authentication handling.

Affected Systems

All installations of the Select‑Themes SetSail Membership plugin up to and including version 1.0.3 are vulnerable. The affected product is the WordPress plugin sold under the SetSail Membership name.

Risk and Exploitability

The CVSS score of 9.8 classifies this as a critical vulnerability, indicating that remote authentication bypass could lead to complete system takeover. Although the EPSS score is below 1 % and the vulnerability is not listed in the CISA KEV catalog, based on the description it is inferred that the attack vector is through the publicly accessible social login endpoint, making exploitation straightforward for an unauthenticated attacker. Because authentication is bypassed, all credentials are effectively compromised if the attacker can choose a target account.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Select-Themes

SetSail Membership

unaffected

Version	Status	Constraints
`0`	affected	≤ 1.0.3

No data.

Vendor	Product	Confidence	Versions
Wordpress	Wordpress	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the SetSail Membership plugin to the latest version that includes the authentication fix, or replace it with an alternative plugin.
Disable the social login functionality until the plugin is updated to prevent unauthenticated access via this path.
Review all user accounts for suspicious changes and reset passwords for accounts that may have been compromised.

Generated by OpenCVE AI on April 21, 2026 at 22:09 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-5891	The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00191.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://themeforest.net/item/setsail-travel-agency-theme/22832625
https://www.wordfence.com/threat-intel/vulnerabilities/id/c2c2385e-0d1e-435a-9b82-972964084148?source=cve

History

Tue, 04 Mar 2025 03:45:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Sat, 01 Mar 2025 07:30:00 +0000

Type	Values Removed	Values Added
Description		The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.
Title		SetSail Membership <= 1.0.3 - Authentication Bypass via Account Takeover
Weaknesses		CWE-288
References		https://themeforest.net/item/setsail-travel-agency-theme/22832625 https://www.wordfence.com/threat-intel/vulnerabilities/id/c2c2385e-0d1e-435a-9b82-972964084148?source=cve
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2025-03-01T07:24:05.077Z

Updated: 2026-04-08T17:20:14.929Z

Reserved: 2025-02-21T17:09:38.984Z

Link: CVE-2025-1564

Vulnrichment

Updated: 2025-03-03T20:55:26.546Z

NVD

Status : Deferred

Published: 2025-03-01T08:15:34.007

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-1564

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-21T22:15:45Z

Weaknesses

CWE-288

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object