{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-4797", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-05-15T18:22:15.692Z", "datePublished": "2025-06-03T04:22:16.085Z", "dateUpdated": "2026-04-08T17:30:25.504Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:30:25.504Z"}, "affected": [{"vendor": "uxper", "product": "Golo - City Travel Guide WordPress Theme", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.7.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.7.0. This is due to the plugin not properly validating a user's identity prior to setting an authorization cookie. This makes it possible for unauthenticated attackers to log in as any user, including administrators, provided they know the user's email address. CVE-2025-54725 is likely a duplicate of this issue."}], "title": "Golo <= 1.7.0 - Authentication Bypass to Account Takeover", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/e7b56ec1-8735-4404-8069-219f5d8866d0?source=cve"}, {"url": "https://themeforest.net/item/golo-directory-listing-travel-wordpress-theme/25397810"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel", "cweId": "CWE-288", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL"}}], "credits": [{"lang": "en", "type": "finder", "value": "Friderika Baranyai"}], "timeline": [{"time": "2025-05-12T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2025-06-02T16:21:57.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-06-03T14:50:13.541557Z", "id": "CVE-2025-4797", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-03T14:50:25.735Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-4797", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-06-03T14:50:13.541557Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-03T14:50:22.915Z"}}], "cna": {"title": "Golo <= 1.7.0 - Authentication Bypass to Account Takeover", "credits": [{"lang": "en", "type": "finder", "value": "Friderika Baranyai"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "uxper", "product": "Golo - City Travel Guide WordPress Theme", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.7.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-05-12T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2025-06-02T16:21:57.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/e7b56ec1-8735-4404-8069-219f5d8866d0?source=cve"}, {"url": "https://themeforest.net/item/golo-directory-listing-travel-wordpress-theme/25397810"}], "descriptions": [{"lang": "en", "value": "The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.7.0. This is due to the plugin not properly validating a user's identity prior to setting an authorization cookie. This makes it possible for unauthenticated attackers to log in as any user, including administrators, provided they know the user's email address. CVE-2025-54725 is likely a duplicate of this issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-288", "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:30:25.504Z"}}}, "cveMetadata": {"cveId": "CVE-2025-4797", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:30:25.504Z", "dateReserved": "2025-05-15T18:22:15.692Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-06-03T04:22:16.085Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.7.0. This is due to the plugin not properly validating a user's identity prior to setting an authorization cookie. This makes it possible for unauthenticated attackers to log in as any user, including administrators, provided they know the user's email address. CVE-2025-54725 is likely a duplicate of this issue."}, {"lang": "es", "value": "El tema Golo - City Travel Guide WordPress Theme para WordPress es vulnerable a la escalada de privilegios mediante robo de cuenta en todas las versiones hasta la 1.7.0 incluida. Esto se debe a que el complemento no valida correctamente la identidad del usuario antes de configurar una cookie de autorizaci\u00f3n. Esto permite que atacantes no autenticados inicien sesi\u00f3n como cualquier usuario, incluidos administradores, siempre que conozcan su direcci\u00f3n de correo electr\u00f3nico."}], "id": "CVE-2025-4797", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-06-03T05:15:20.323", "references": [{"source": "security@wordfence.com", "url": "https://themeforest.net/item/golo-directory-listing-travel-wordpress-theme/25397810"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/e7b56ec1-8735-4404-8069-219f5d8866d0?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-288"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T20:29:56.854273+00:00", "value": {"mitigation_remediation": ["Upgrade the Golo theme to the latest release that includes the authentication validation fix", "If an upgrade is not possible immediately, limit administrative area access by IP whitelisting or enable multi\u2011factor authentication for all administrator accounts", "Monitor for anomalous login activity and unauthorized cookie usage using a security plugin or Web Application Firewall"], "summary": {"action": "Immediate Patch", "impact": "Account Takeover via Unauthorized Cookie"}, "threat_synthesis": {"affected_systems": "All deployments of the Golo theme produced by uxper, specifically versions up to and including 1.7.0, are affected. The flaw exists in any WordPress installation that has installed this theme.", "description_and_impact": "The vulnerability in the Golo \u2013 City Travel Guide WordPress Theme allows an unauthenticated attacker to set an authorization cookie for any user by providing that user\u2019s email address. This bypasses the theme\u2019s identity validation, granting the attacker full privileges, including administrative rights. It is an instance of improper authentication (CWE\u2011288) and effectively leads to a direct account takeover, compromising confidentiality, integrity, and availability of the affected WordPress site.", "risk_and_exploitability": "The CVSS score of 9.8 classifies the flaw as critical, but the EPSS score of less than 1% indicates that exploitation is expected to be rare at present. The flaw is not listed in the CISA KEV catalog. Attackers need no credentials, only a valid user email, and once supplied can gain immediate control. While the lack of known public exploitation and the necessity of insider knowledge reduce the urgency compared to some zero\u2011day threats, the severity of the impact warrants prompt action."}}}}, "created": "2026-04-21T20:30:27.404154+00:00", "updated": "2026-04-21T20:30:27.404164+00:00", "vendors": []}