CVE Details
Basic Information
| Title | Opal Estate Pro <= 1.7.5 - Unauthenticated Privilege Escalation via 'on_regiser_user' |
|---|---|
| Type | cve |
| Published | 2025-07-01T06:43:03.156Z |
| Modified | 2025-07-01T06:43:03.156Z |
Product Information
| Vendor | wpopal |
|---|---|
| Product | Opal Estate Pro – Property Management and Submission |
| Version | * |
CVSS Information
| Base Score | 9.8 (CRITICAL) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
AI Analysis
| AI Description | The Opal Estate Pro WordPress plugin is vulnerable to unauthenticated privilege escalation. Attackers can exploit this by choosing roles during user registration, potentially gaining administrator access. |
|---|---|
| AI Severity | High |
| AI Vendor | WordPress Community |
| AI Product | Opal Estate Pro – Property Management and Submission |
| AI Version | 1.7.5 |
Affected Products
- wpopal Opal Estate Pro – Property Management and Submission *
Additional Information
| CWE List | CWE-269 |
|---|---|
| Source | Wordfence |
Description
The Opal Estate Pro – Property Management and Submission plugin for WordPress, used by the FullHouse – Real Estate Responsive WordPress Theme, is vulnerable to privilege escalation via in all versions up to, and including, 1.7.5. This is due to a lack of role restriction during registration in the ‘on_regiser_user’ function. This makes it possible for unauthenticated attackers to arbitrarily choose the role, including the Administrator role, assigned when registering.
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/5d7b75a4-67b4-4347-91a6-dbf98da5ceaf?source=cve
- https://themeforest.net/item/fullhouse-real-estate-responsive-wordpress-theme/16179481
- https://plugins.trac.wordpress.org/browser/opal-estate-pro/trunk/inc/user/class-opalestate-user.php#L228
- https://plugins.trac.wordpress.org/browser/opal-estate-pro/trunk/inc/user/class-opalestate-user.php#L235