CVE-2026-3829 - Vulnerability Details

- WP Encryption - One Click SSL & Force HTTPS <= 7.8.5.10 - Missing Authorization to Authenticated (Subscriber+) SSL Setup Tampering

Description

The WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the 'wple_basic_get_requests' function in all versions up to, and including, 7.8.5.10. This makes it possible for authenticated attackers, with subscriber level access and above, to reset the SSL setup state, force SSL to appear complete, and modify plan selection options.

Published: 2026-05-14

Score: 5.4 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability is caused by a missing capability check on the function that manages SSL requests. As a result, any authenticated user with a subscriber role or higher can trigger the plugin to reset its SSL setup state, mark SSL as complete without full validation, and alter plan selection options. This can lead to an attacker changing the site’s HTTPS enforcement behaviour or bypassing security settings, potentially allowing domain hijacking or downgrade attacks. The weakness aligns with the vulnerability class of missing authorization for privileged operations.

Affected Systems

The issue affects the WordPress plugin "WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan" provided by gowebsmarty. All releases up to and including version 7.8.5.10 are impacted. Once installed on a WordPress site, any subscriber or higher role can manipulate SSL configuration through the plugin’s admin interface or AJAX endpoints.

Risk and Exploitability

With a CVSS score of 5.4, the vulnerability is considered moderate in severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, implying no known widespread exploitation at this time. The attack vector is likely local to the WordPress installation: an authenticated user must already have logged in with a subscriber or higher role. Once authenticated, the attacker can issue requests that trigger the unauthorised SSL‑setup logic. Because the flaw does not require elevated privileges beyond a normal subscriber account, many sites are potentially at risk, particularly those with large numbers of users at or above this role.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

gowebsmarty

WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan

unaffected

Version	Status	Constraints
`0`	affected	≤ 7.8.5.10

No data.

Vendor Product Confidence Versions

Gowebsmarty

Wp Encryption – One Click Free Ssl Certificate & Ssl / Https Redirect, Security & Ssl Scan

100%

Version	Status	Scheme	Platform
`[0,7.8.5.10]`	affected	semver	—

Wordpress

80%

Version	Status	Scheme	Platform
`—`	unaffected	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the WP Encryption plugin to version 7.8.5.11 or newer to apply the missing capability checks.
If an upgrade cannot be performed immediately, disable or remove the plugin’s SSL‑setup endpoints by configuring ‘wple_basic_get_requests’ to require higher capabilities or by disabling the related AJAX actions via a custom plugin or theme function.
Monitor site logs for suspicious SSL‑setup requests from subscriber accounts and consider temporarily suspending those accounts until the plugin is updated or the endpoints are secured.

Generated by OpenCVE AI on May 14, 2026 at 07:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00022.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://plugins.trac.wordpress.org/changeset?old_path=wp-letsencrypt-ssl/tags/7.8.5.10/admin/le_admin.php&new_path=wp-letsencrypt-ssl/tags/7.8.5.11/admin/le_admin.php
https://plugins.trac.wordpress.org/changeset?old_path=wp-letsencrypt-ssl/tags/7.8.5.10/admin/le_handlers.php&new_path=wp-letsencrypt-ssl/tags/7.8.5.11/admin/le_handlers.php
https://www.wordfence.com/threat-intel/vulnerabilities/id/9a09ec65-32e4-4841-a365-f67c15b80bf9?source=cve

History

Thu, 14 May 2026 11:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 14 May 2026 08:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Gowebsmarty Gowebsmarty wp Encryption – One Click Free Ssl Certificate & Ssl / Https Redirect, Security & Ssl Scan Wordpress Wordpress wordpress
Vendors & Products		Gowebsmarty Gowebsmarty wp Encryption – One Click Free Ssl Certificate & Ssl / Https Redirect, Security & Ssl Scan Wordpress Wordpress wordpress

Thu, 14 May 2026 06:00:00 +0000

Type	Values Removed	Values Added
Description		The WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the 'wple_basic_get_requests' function in all versions up to, and including, 7.8.5.10. This makes it possible for authenticated attackers, with subscriber level access and above, to reset the SSL setup state, force SSL to appear complete, and modify plan selection options.
Title		WP Encryption - One Click SSL & Force HTTPS <= 7.8.5.10 - Missing Authorization to Authenticated (Subscriber+) SSL Setup Tampering
Weaknesses		CWE-862
References		https://plugins.trac.wordpress.org/changeset?old_path=wp-letsencrypt-ssl/tags/7.8.5.10/admin/le_admin.php&new_path=wp-letsencrypt-ssl/tags/7.8.5.11/admin/le_admin.php https://plugins.trac.wordpress.org/changeset?old_path=wp-letsencrypt-ssl/tags/7.8.5.10/admin/le_handlers.php&new_path=wp-letsencrypt-ssl/tags/7.8.5.11/admin/le_handlers.php https://www.wordfence.com/threat-intel/vulnerabilities/id/9a09ec65-32e4-4841-a365-f67c15b80bf9?source=cve
Metrics		cvssV3_1 `{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L'}`

Subscriptions

Gowebsmarty Wp Encryption – One Click Free Ssl Certificate & Ssl / Https Redirect, Security & Ssl Scan

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2026-05-14T05:30:29.507Z

Updated: 2026-05-14T10:46:18.449Z

Reserved: 2026-03-09T11:24:21.753Z

Link: CVE-2026-3829

Vulnrichment

Updated: 2026-05-14T10:46:13.215Z

NVD

Status : Deferred

Published: 2026-05-14T06:16:22.933

Modified: 2026-05-14T14:29:01.600

Link: CVE-2026-3829

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-14T08:30:16Z

Weaknesses

CWE-862

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object