CVE-2025-3101 - Vulnerability Details

- Configurator Theme Core <= 1.4.7 - Authenticated (Subscriber+) Privilege Escalation

Description

The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.7. This is due to the plugin not properly validating user meta fields prior to updating them in the database. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change escalate their privileges to Administrator.

Published: 2025-04-24

Score: 8.8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation because the plugin does not correctly validate user meta fields before updating them in the database. This flaw is a classic case of CWE-269, where an attacker is able to write data they should not be permitted to write, elevating their permissions. As a result, an authenticated user with the minimum Subscriber role or higher can modify stored user meta to acquire Administrator‑level access, undermining the integrity of the site’s access controls.

Affected Systems

WordPress sites that have the wp-configurator:Configurator Theme Core plugin installed with any version up to and including 1.4.7. The vulnerability affects all users who have Subscriber‑level access or higher, regardless of the site’s specific configuration or role definitions.

Risk and Exploitability

The CVSS score of 8.8 indicates a high severity assessment. The EPSS score of less than 1% suggests that, as of the latest data, exploitation is not currently common, but the vulnerability remains a significant risk because it requires only an existing authenticated account and no special network access. The vulnerability is not listed in CISA’s KEV catalog, so it has not been observed in widespread exploitation campaigns. The likely attack vector is an authenticated, subscriber‑level user who can trigger the plugin’s user metadata update mechanisms, allowing them to inject elevated authority credentials directly into the database.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

wp-configurator

Configurator Theme Core

unaffected

Version	Status	Constraints
`0`	affected	≤ 1.4.7

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Disable or remove the Configurator Theme Core plugin if it is not required, and keep it inactive until a vendor‑provided fix is available.
Verify that Subscriber accounts do not possess capabilities to modify user meta or elevate privileges; revoke any such capabilities if they exist.
Implement regular monitoring of user meta changes and review audit logs to detect unauthorized privilege escalations.

Generated by OpenCVE AI on April 22, 2026 at 01:41 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-12126	The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.7. This is due to the plugin not properly validating user meta fields prior to updating them in the database. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change escalate their privileges to Administrator.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0026.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://themeforest.net/item/configurator-woocommerce-wordpress-theme/20474230
https://www.wordfence.com/threat-intel/vulnerabilities/id/535aa061-479f-415e-bee6-3151c42b917e?source=cve

History

Thu, 24 Apr 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 24 Apr 2025 08:45:00 +0000

Type	Values Removed	Values Added
Description		The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.7. This is due to the plugin not properly validating user meta fields prior to updating them in the database. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change escalate their privileges to Administrator.
Title		Configurator Theme Core <= 1.4.7 - Authenticated (Subscriber+) Privilege Escalation
Weaknesses		CWE-269
References		https://themeforest.net/item/configurator-woocommerce-wordpress-theme/20474230 https://www.wordfence.com/threat-intel/vulnerabilities/id/535aa061-479f-415e-bee6-3151c42b917e?source=cve
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2025-04-24T08:23:48.158Z

Updated: 2026-04-08T16:53:03.335Z

Reserved: 2025-04-01T17:05:36.045Z

Link: CVE-2025-3101

Vulnrichment

Updated: 2025-04-24T13:48:16.680Z

NVD

Status : Deferred

Published: 2025-04-24T09:15:30.843

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-3101

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-22T01:45:05Z

Weaknesses

CWE-269

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object