Ace User Management

6.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Description

The Ace User Management WordPress plugin through 2.0.3 does not properly validate that a password reset token is associated with the user who requested it, allowing any authenticated users, such as subscriber to reset the password of arbitrary accounts, including administrators.

Basic Information

ID CVE-2025-6027

Source WPScan

Published Nov 5, 2025 at 06:00

Modified Nov 5, 2025 at 18:35

Affected Product

Vendor Unknown

Product Ace User Management

Affected Versions Unknown Ace User Management 0

CWE Classification

References

wpscan.com /vulnerability/06fb8088-10e3-424e-a3ac-4673bac49467/

{
    "lastseen": "",
    "description": "The Ace User Management WordPress plugin through 2.0.3 does not properly validate that a password reset token is associated with the user who requested it, allowing any authenticated users, such as subscriber to reset the password of arbitrary accounts, including administrators.",
    "published": "2025-11-05T06:00:07.919Z",
    "modified": "2025-11-05T18:35:20.331Z",
    "type": "cve",
    "title": "Ace User Management <= 2.0.3 - Subscriber+ Authentication Bypass via Password Rest",
    "source": "WPScan",
    "references": "https://wpscan.com/vulnerability/06fb8088-10e3-424e-a3ac-4673bac49467/",
    "id": "CVE-2025-6027",
    "bulletinFamily": "",
    "cwe": [
        ""
    ],
    "cvelist": null,
    "sourceData": "Unknown Ace User Management 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Ace User Management",
    "version": "0",
    "vendor": "Unknown",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Ace User Management <= 2.0.3 - Subscriber+ Authentication Bypass via Password Rest_CVE-2025-6027