CVE-2025-25225

Published Mar 15, 2025

Last updated 17 days ago

CVSS medium 6.5

Overview

Description: A privilege escalation vulnerability in the Hikashop component versions 1.0.0-5.1.3 for Joomla allows authenticated attackers (administrator) to escalate their privileges to Super Admin Permissions.
Source: security@joomla.org
NVD status: Awaiting Analysis

Risk scores

CVSS 3.1

Type: Secondary
Base score: 6.5
Impact score: 5.9
Exploitability score: 0.6
Vector string: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Severity: MEDIUM

Weaknesses

security@joomla.org: CWE-284

Hype score: Not currently trending

CVE-2025-25225 A privilege escalation vulnerability in the Hikashop component versions 1.0.0-5.1.3 for Joomla allows authenticated attackers (administrator) to escalate their privil… https://t.co/AOVMU7shUK
@CVEnew
15 Mar 2025
379 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References