{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-1687", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-02-25T10:38:35.575Z", "datePublished": "2025-02-27T23:22:39.776Z", "dateUpdated": "2026-04-08T16:57:12.337Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:57:12.337Z"}, "affected": [{"vendor": "ThemeMakers", "product": "Car Dealer Automotive WordPress Theme \u2013 Responsive", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.6.4", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Cardealer theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.4. This is due to missing nonce validation on the 'update_user_profile' function. This makes it possible for unauthenticated attackers to update the user email and password via a forged request, granted they can trick a site administrator into performing an action such as clicking on a link."}], "title": "Cardealer <= 1.6.4 - Cross-Site Request Forgery to User Update via update_user_profile", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6305b7be-8651-4028-a8cf-ea58b4977225?source=cve"}, {"url": "https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708"}, {"url": "https://webtemplatemasters.com/cardealer/changelog/#v165"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-352 Cross-Site Request Forgery (CSRF)", "cweId": "CWE-352", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 8.8, "baseSeverity": "HIGH"}}], "credits": [{"lang": "en", "type": "finder", "value": "Istv\u00e1n M\u00e1rton"}], "timeline": [{"time": "2025-02-25T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2025-02-25T00:00:00.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-02-27T00:00:00.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-02-28T14:47:09.989115Z", "id": "CVE-2025-1687", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-28T14:47:26.319Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-1687", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-02-28T14:47:09.989115Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-28T14:47:20.617Z"}}], "cna": {"title": "Cardealer <= 1.6.4 - Cross-Site Request Forgery to User Update via update_user_profile", "credits": [{"lang": "en", "type": "finder", "value": "Istv\u00e1n M\u00e1rton"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 8.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "ThemeMakers", "product": "Car Dealer Automotive WordPress Theme \u2013 Responsive", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.6.4"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-02-25T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2025-02-25T00:00:00.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-02-27T00:00:00.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6305b7be-8651-4028-a8cf-ea58b4977225?source=cve"}, {"url": "https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708"}, {"url": "https://webtemplatemasters.com/cardealer/changelog/#v165"}], "descriptions": [{"lang": "en", "value": "The Cardealer theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.4. This is due to missing nonce validation on the 'update_user_profile' function. This makes it possible for unauthenticated attackers to update the user email and password via a forged request, granted they can trick a site administrator into performing an action such as clicking on a link."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-352", "description": "CWE-352 Cross-Site Request Forgery (CSRF)"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:57:12.337Z"}}}, "cveMetadata": {"cveId": "CVE-2025-1687", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:57:12.337Z", "dateReserved": "2025-02-25T10:38:35.575Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-02-27T23:22:39.776Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Cardealer theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.4. This is due to missing nonce validation on the 'update_user_profile' function. This makes it possible for unauthenticated attackers to update the user email and password via a forged request, granted they can trick a site administrator into performing an action such as clicking on a link."}, {"lang": "es", "value": "El tema Cardealer para WordPress es vulnerable a Cross-Site Request Forgery en versiones hasta la 1.6.4 incluida. Esto se debe a la falta de validaci\u00f3n de nonce en la funci\u00f3n 'update_user_profile'. Esto hace posible que atacantes no autenticados actualicen el correo electr\u00f3nico y la contrase\u00f1a del usuario a trav\u00e9s de una solicitud falsificada, siempre que puedan enga\u00f1ar a un administrador del sitio para que realice una acci\u00f3n como hacer clic en un enlace."}], "id": "CVE-2025-1687", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-02-28T00:15:36.240", "references": [{"source": "security@wordfence.com", "url": "https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708"}, {"source": "security@wordfence.com", "url": "https://webtemplatemasters.com/cardealer/changelog/#v165"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6305b7be-8651-4028-a8cf-ea58b4977225?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T22:14:21.838863+00:00", "value": {"mitigation_remediation": ["Upgrade the Cardealer WordPress theme to the latest version that fixes the CSRF vulnerability.", "If an upgrade cannot be performed, manually add nonce validation to the update_user_profile function or disable that function entirely for administrators.", "As a temporary safeguard, restrict access to the WordPress admin area for administrators to trusted IP addresses or enable two\u2011factor authentication for admin accounts."], "summary": {"action": "Immediate Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "The vulnerability affects ThemeMakers' Car Dealer Automotive WordPress Theme \u2013 Responsive in all releases through version 1.6.4. Anyone currently using versions 1.6.4 or older is at risk.", "description_and_impact": "The Cardealer WordPress theme is vulnerable to a cross\u2011site request forgery (CSRF) condition caused by missing nonce validation in the update_user_profile function. Because authentication is not properly checked, a malicious actor can craft a link that, when clicked by a website administrator, will silently change the administrator's email address and password. This leads to loss of control over the admin account or lockout of the legitimate user, allowing the attacker to gain unauthorized access to the WordPress site.", "risk_and_exploitability": "The CVSS score of 8.8 indicates a high severity with a score of 8.8, while the EPSS score of less than 1% suggests that the likelihood of exploitation is currently low but not impossible. The vulnerability is not yet listed in the CISA KEV catalog. An attacker can exploit this flaw by sending an unauthenticated CSRF request to an administrator\u2019s browser, typically by tricking the user into clicking a malicious link or visiting a compromised site. Because the attacker only requires the target to interact with a link, the threat model is widespread for sites that have an active administrator portal and no CSRF protection in place."}}}}, "created": "2026-04-21T22:15:45.905879+00:00", "updated": "2026-04-21T22:15:45.905891+00:00", "vendors": []}