Description
The Resideo Plugin for Resideo - Real Estate WordPress Theme plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.5.4. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
Published: 2025-09-10
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Immediate Patch
AI Analysis

Impact

The Resideo Plugin for Resideo - Real Estate WordPress Theme is vulnerable to privilege escalation via account takeover. Users with Subscriber-level access or higher can exploit a lack of identity validation when updating account details, allowing an attacker to change any user’s email address, including administrators, and then reset the account password to gain unauthorized access.

Affected Systems

All installs of the Resideo Plugin for Resideo - Real Estate WordPress Theme version 2.5.4 and earlier are impacted.

Risk and Exploitability

The CVSS score of 8.8 classifies this as high severity. The EPSS score of less than 1% indicates a low probability of exploitation; however, the vulnerability is not listed in CISA KEV. An attacker must be authenticated as a Subscriber or higher, after which the exploit can be executed by editing another user’s email. Because the attack path requires legitimate access, the risk is focused on insider or compromised accounts rather than public-facing vectors.

Generated by OpenCVE AI on April 20, 2026 at 19:40 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Resideo Plugin for Resideo - Real Estate WordPress Theme to a version newer than 2.5.4.
  • Reset passwords for all administrator and high-privilege accounts immediately after applying the patch.
  • If an update cannot be applied immediately, temporarily revoke Subscriber-level users’ ability to edit account details or enforce stricter role permissions until the patch is installed.

Generated by OpenCVE AI on April 20, 2026 at 19:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-27545 The Resideo Plugin for Resideo - Real Estate WordPress Theme plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.5.4. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
History

Fri, 12 Sep 2025 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Pixel Prime
Pixel Prime resideo Plugin
Wordpress
Wordpress wordpress
Vendors & Products Pixel Prime
Pixel Prime resideo Plugin
Wordpress
Wordpress wordpress

Wed, 10 Sep 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 10 Sep 2025 12:45:00 +0000

Type Values Removed Values Added
Description The Resideo Plugin for Resideo - Real Estate WordPress Theme plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.5.4. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
Title Resideo Plugin for Resideo - Real Estate WordPress Theme <= 2.5.4 - Authenticated (Subscriber+) Insecure Direct Object Reference to Privilege Escalation via Account Takeover
Weaknesses CWE-639
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Pixel Prime Resideo Plugin
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:33:55.679Z

Reserved: 2025-07-16T14:56:48.330Z

Link: CVE-2025-7718

cve-icon Vulnrichment

Updated: 2025-09-10T14:06:41.174Z

cve-icon NVD

Status : Deferred

Published: 2025-09-10T13:15:37.040

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-7718

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T19:45:15Z

Weaknesses