CVE-2025-6758 - Vulnerability Details

- Real Spaces - WordPress Properties Directory Theme <= 3.6 - Unauthenticated Privilege Escalation to Administrator via 'imic_agent_register'

Description

The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to privilege escalation via the 'imic_agent_register' function in all versions up to, and including, 3.6. This is due to a lack of restriction in the registration role. This makes it possible for unauthenticated attackers to arbitrarily choose their role, including the Administrator role, during user registration.

Published: 2025-08-19

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The theme contains a functionality called 'imic_agent_register' that allows user registration. The function fails to enforce role validation, permitting any role value to be accepted. An attacker can set the role to Administrator, yielding full administrative control over the WordPress site, including configuration changes, content creation, plugin installation, and access to all sensitive data. This weakness is an example of Improper Privilege Escalation (CWE-269).

Affected Systems

All released versions of Real Spaces – WordPress Properties Directory Theme by imithemes up to and including 3.6 are vulnerable. WordPress sites that have installed this theme and expose the registration feature are at risk.

Risk and Exploitability

With a CVSS score of 9.8, the vulnerability is classified as very high severity. The EPSS score of less than 1% indicates that exploit attempts are currently rare and the theme is not listed in CISA KEV. The attack vector is unauthenticated remote; a malicious actor merely needs to submit a crafted request to the registration endpoint, specifying the Administrator role, to gain administrative privileges. No credentials or additional privileges are required, making the exploitation path highly accessible to threat actors.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

imithemes

Real Spaces - WordPress Properties Directory Theme

unaffected

Version	Status	Constraints
`0`	affected	≤ 3.6

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update Real Spaces to a version newer than 3.6 where role restrictions are enforced.
If an update is unavailable, remove or disable the role selection parameter from the registration form so that only a safe default role can be assigned.
Revoke administrative privileges from existing admin accounts or lock all accounts until the theme update is applied.

Generated by OpenCVE AI on April 20, 2026 at 19:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-28767	The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to privilege escalation via the 'imic_agent_register' function in all versions up to, and including, 3.6. This is due to a lack of restriction in the registration role. This makes it possible for unauthenticated attackers to arbitrarily choose their role, including the Administrator role, during user registration.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00248.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://themeforest.net/item/real-spaces-wordpress-real-estate-theme/8219779
https://www.wordfence.com/threat-intel/vulnerabilities/id/e2b24858-dfcd-46f3-9552-c7acc63a1ee7?source=cve

History

Tue, 19 Aug 2025 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 19 Aug 2025 07:00:00 +0000

Type	Values Removed	Values Added
Description		The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to privilege escalation via the 'imic_agent_register' function in all versions up to, and including, 3.6. This is due to a lack of restriction in the registration role. This makes it possible for unauthenticated attackers to arbitrarily choose their role, including the Administrator role, during user registration.
Title		Real Spaces - WordPress Properties Directory Theme <= 3.6 - Unauthenticated Privilege Escalation to Administrator via 'imic_agent_register'
Weaknesses		CWE-269
References		https://themeforest.net/item/real-spaces-wordpress-real-estate-theme/8219779 https://www.wordfence.com/threat-intel/vulnerabilities/id/e2b24858-dfcd-46f3-9552-c7acc63a1ee7?source=cve
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2025-08-19T06:45:27.412Z

Updated: 2026-04-08T17:29:16.610Z

Reserved: 2025-06-27T00:08:16.995Z

Link: CVE-2025-6758

Vulnrichment

Updated: 2025-08-19T13:20:47.509Z

NVD

Status : Deferred

Published: 2025-08-19T07:15:30.697

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-6758

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-20T20:00:10Z

Weaknesses

CWE-269

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object