CVE-2025-69101 - Vulnerability Details

- WordPress Workreap Core plugin <= 3.4.1 - Broken Authentication vulnerability

Description

Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Workreap Core workreap_core allows Authentication Abuse.This issue affects Workreap Core: from n/a through <= 3.4.1.

Published: 2026-01-22

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

This flaw permits an attacker to bypass normal authentication by using an alternate path or channel, enabling them to act as any user on the WordPress site. The vulnerability is a CWE‑288 weakness that undermines the confidentiality, integrity, and availability of the site, potentially giving an attacker full control over content, settings, and user credentials.

Affected Systems

Any WordPress installation that has the AmentoTech Workreap Core plugin installed with a version no newer than 3.4.1. No specific build identifiers beyond the stated maximum are provided, so the issue applies to all releases up to and including 3.4.1.

Risk and Exploitability

The CVSS score of 9.8 classifies the vulnerability as Critical, indicating that successful exploitation could grant an attacker administrative privileges over the affected site. The EPSS score of less than 1% suggests a currently low probability of exploitation, but the lack of targeted detection means that an attacker could still succeed if they can reach the plugin’s authentication endpoints. The attack vector is inferred to be network‑based via HTTP requests to the plugin’s alternate authentication path, as the description indicates an alternate channel; this inference is not directly stated in the CVE record.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

AmentoTech

Workreap Core

unaffected

Version	Status	Constraints
`0`	affected	≤ 3.4.1

No data.

Vendor	Product	Confidence	Versions
Amentotech	Workreap	—	—
Wordpress	Wordpress	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the Workreap Core plugin to a version newer than 3.4.1 that contains the authentication bypass fix.
Restrict or disable the plugin’s alternate authentication endpoints at the web‑application or server level to prevent unauthenticated access.
Implement logging and monitoring for authentication attempts on the WordPress site, and review logs for signs of bypass activity or unauthorized account usage.

Generated by OpenCVE AI on April 28, 2026 at 18:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00037.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://patchstack.com/database/Wordpress/Plugin/workreap_core/vulnerability/wordpress-workreap-core-plugin-3-4-0-account-takeover-vulnerability?_s_id=cve

History

Wed, 01 Apr 2026 23:45:00 +0000

Type	Values Removed	Values Added
Description	Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Workreap Core workreap_core allows Authentication Abuse.This issue affects Workreap Core: from n/a through <= 3.4.0.	Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Workreap Core workreap_core allows Authentication Abuse.This issue affects Workreap Core: from n/a through <= 3.4.1.
Title	WordPress Workreap Core plugin <= 3.4.0 - Account Takeover vulnerability	WordPress Workreap Core plugin <= 3.4.1 - Broken Authentication vulnerability

Tue, 27 Jan 2026 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 23 Jan 2026 16:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Amentotech Amentotech workreap Wordpress Wordpress wordpress
Vendors & Products		Amentotech Amentotech workreap Wordpress Wordpress wordpress

Thu, 22 Jan 2026 23:00:00 +0000

Type	Values Removed	Values Added
Description		Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Workreap Core workreap_core allows Authentication Abuse.This issue affects Workreap Core: from n/a through <= 3.4.0.
Title		WordPress Workreap Core plugin <= 3.4.0 - Account Takeover vulnerability
Weaknesses		CWE-288
References		https://patchstack.com/database/Wordpress/Plugin/workreap_core/vulnerability/wordpress-workreap-core-plugin-3-4-0-account-takeover-vulnerability?_s_id=cve

Subscriptions

Amentotech Workreap

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2026-01-22T16:52:27.433Z

Updated: 2026-04-28T20:42:58.087Z

Reserved: 2025-12-29T11:19:21.661Z

Link: CVE-2025-69101

Vulnrichment

Updated: 2026-01-27T15:15:21.332Z

NVD

Status : Deferred

Published: 2026-01-22T17:16:22.983

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-69101

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-28T18:15:37Z

Weaknesses

CWE-288

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object