{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-6042", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-06-12T20:43:29.943Z", "datePublished": "2025-10-15T05:23:48.703Z", "dateUpdated": "2026-04-08T17:15:45.827Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:15:45.827Z"}, "affected": [{"vendor": "pebas", "product": "Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.4.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.0. This is due to the plugin assigning the editor role by default. While limitations with respect to capabilities are put in place, use of the API is not restricted. This vulnerability can be leveraged together with CVE-2025-6038 to obtain admin privileges."}], "title": "Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme <= 1.4.0 - Unauthenticated Privilege Escalation to Editor", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/afffd5e2-798b-42b5-b0b9-ac7d6d06edbb?source=cve"}, {"url": "https://themeforest.net/item/lisfinity-classified-ads-wordpress-theme/26342611"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-269 Improper Privilege Management", "cweId": "CWE-269", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "baseScore": 7.3, "baseSeverity": "HIGH"}}], "credits": [{"lang": "en", "type": "finder", "value": "Alyudin Nafiie"}], "timeline": [{"time": "2025-06-16T14:51:08.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-10-14T16:29:07.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-10-15T18:12:44.483286Z", "id": "CVE-2025-6042", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-15T18:12:56.171Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-6042", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-10-15T18:12:44.483286Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-15T18:12:48.924Z"}}], "cna": {"title": "Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme <= 1.4.0 - Unauthenticated Privilege Escalation to Editor", "credits": [{"lang": "en", "type": "finder", "value": "Alyudin Nafiie"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}}], "affected": [{"vendor": "pebas", "product": "Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.4.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-06-16T14:51:08.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-10-14T16:29:07.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/afffd5e2-798b-42b5-b0b9-ac7d6d06edbb?source=cve"}, {"url": "https://themeforest.net/item/lisfinity-classified-ads-wordpress-theme/26342611"}], "descriptions": [{"lang": "en", "value": "The Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.0. This is due to the plugin assigning the editor role by default. While limitations with respect to capabilities are put in place, use of the API is not restricted. This vulnerability can be leveraged together with CVE-2025-6038 to obtain admin privileges."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:15:45.827Z"}}}, "cveMetadata": {"cveId": "CVE-2025-6042", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:15:45.827Z", "dateReserved": "2025-06-12T20:43:29.943Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-10-15T05:23:48.703Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Lisfinity Core - Lisfinity Core plugin used for pebas\u00ae Lisfinity WordPress theme plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.0. This is due to the plugin assigning the editor role by default. While limitations with respect to capabilities are put in place, use of the API is not restricted. This vulnerability can be leveraged together with CVE-2025-6038 to obtain admin privileges."}], "id": "CVE-2025-6042", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-10-15T06:15:44.887", "references": [{"source": "security@wordfence.com", "url": "https://themeforest.net/item/lisfinity-classified-ads-wordpress-theme/26342611"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/afffd5e2-798b-42b5-b0b9-ac7d6d06edbb?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T21:40:14.822819+00:00", "value": {"mitigation_remediation": ["Upgrade the Lisfinity Core plugin to a version newer than 1.4.0 or apply any vendor\u2011supplied patch that removes the default editor role assignment.", "If an immediate upgrade is not feasible, manually modify the role assignment logic in the plugin or disable the unrestricted API endpoints so that only properly authorized users can trigger them.", "Review all existing editor accounts on the WordPress site and follow strict role\u2011management practices to ensure no unintended users have elevated privileges."], "summary": {"action": "Patch Now", "impact": "Privilege escalation to Editor role, leading to unauthorized content management capabilities"}, "threat_synthesis": {"affected_systems": "\nWordPress sites employing the pebas Lisfinity Core plugin for the Lisfinity WordPress theme in any version up to and including 1.4.0. The vulnerability affects the plugin itself, regardless of the broader theme, and impacts any WordPress installation where unauthenticated access to the plugin\u2019s API is possible.\n", "description_and_impact": "\nThe Lisfinity Core plugin automatically assigns the editor role to users upon installation, while its API calls are not restricted by role. This design flaw allows an attacker to gain editor-level privileges without authentication, particularly when leveraged in conjunction with CVE-2025-6038. The elevated privileges enable modification of site content, addition of new users, and other administrative actions normally reserved for higher roles.\n", "risk_and_exploitability": "\nThe CVSS score of 7.3 categorizes the issue as medium severity, while the EPSS score of less than 1% indicates a low likelihood of widespread exploitation at present. The vulnerability may not be listed in the CISA KEV catalog. It is inferred that the attack vector is unauthenticated via the exposed API endpoints, allowing an external actor to elevate privileges to the editor role without needing prior credentials. Once elevation is achieved, the attacker can perform any action allowed to editors, potentially compromising content integrity and site stability.\n"}}}}, "created": "2025-10-21T09:41:14.287104+00:00", "updated": "2026-04-20T21:45:18.970747+00:00", "vendors": ["pebas", "pebas$PRODUCT$lisfinity_core", "wordpress", "wordpress$PRODUCT$wordpress"]}