- Description
- The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.
- Source
- security@wordfence.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- security@wordfence.com
- CWE-288
- Hype score
- Not currently trending
🚨 CVE-2025-1564 ⚠️🔴 CRITICAL (9.8) 🏢 Select-Themes - SetSail Membership 🏗️ * 🔗 https://t.co/JY5bAbOYVD 🔗 https://t.co/jn4kpB8Mvs #CyberCron #VulnAlert #InfoSec https://t.co/jlzAvBxNN9
@cybercronai
2 Mar 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-1564 The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users iden… https://t.co/pp7p43aEDi
@CVEnew
1 Mar 2025
99 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-1564: CRITICAL] WordPress SetSail Membership plugin (up to v1.0.3) has a serious vulnerability allowing unauthenticated attackers to impersonate users, including administrators. Ensure an immediate update.#cybersecurity,#vulnerability https://t.co/HGJXZPJ5F4 https://t.c
@CveFindCom
1 Mar 2025
6 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
0 Quotes
�� CVE-2025-1564 - WordPress - HIGH 🚨 🗓️ Date published 2025-03-01 08:15:34 UTC #WordPress #CyberSecurity #InfoSec #Vulnerability #TechNews https://t.co/N0x4tWQTxT
@vulns_space
1 Mar 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes