{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-7710", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-07-16T13:31:51.303Z", "datePublished": "2025-08-02T11:23:55.098Z", "dateUpdated": "2026-04-08T16:56:35.243Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:56:35.243Z"}, "affected": [{"vendor": "Brave", "product": "Brave Conversion Engine (PRO)", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "0.7.7", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Brave Conversion Engine (PRO) plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 0.7.7. This is due to the plugin not properly restricting a claimed identity while authenticating with Facebook. This makes it possible for unauthenticated attackers to log in as other users, including administrators."}], "title": "Brave Conversion Engine (PRO) <= 0.7.7 - Authentication Bypass to Administrator", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/604249c6-b23a-40e9-984d-2014f5c97249?source=cve"}, {"url": "https://getbrave.io/brave-pro-changelog/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel", "cweId": "CWE-288", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL"}}], "credits": [{"lang": "en", "type": "finder", "value": "Th\u00e1i An"}], "timeline": [{"time": "2025-07-17T05:25:10.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-08-01T21:30:13.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-04T13:22:40.924505Z", "id": "CVE-2025-7710", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-04T13:23:10.939Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-7710", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-08-04T13:22:40.924505Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-04T13:23:06.768Z"}}], "cna": {"title": "Brave Conversion Engine (PRO) <= 0.7.7 - Authentication Bypass to Administrator", "credits": [{"lang": "en", "type": "finder", "value": "Th\u00e1i An"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "Brave", "product": "Brave Conversion Engine (PRO)", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "0.7.7"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-07-17T05:25:10.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-08-01T21:30:13.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/604249c6-b23a-40e9-984d-2014f5c97249?source=cve"}, {"url": "https://getbrave.io/brave-pro-changelog/"}], "descriptions": [{"lang": "en", "value": "The Brave Conversion Engine (PRO) plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 0.7.7. This is due to the plugin not properly restricting a claimed identity while authenticating with Facebook. This makes it possible for unauthenticated attackers to log in as other users, including administrators."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-288", "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2025-08-02T11:23:55.098Z"}}}, "cveMetadata": {"cveId": "CVE-2025-7710", "state": "PUBLISHED", "dateUpdated": "2025-08-04T13:23:10.939Z", "dateReserved": "2025-07-16T13:31:51.303Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-08-02T11:23:55.098Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Brave Conversion Engine (PRO) plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 0.7.7. This is due to the plugin not properly restricting a claimed identity while authenticating with Facebook. This makes it possible for unauthenticated attackers to log in as other users, including administrators."}, {"lang": "es", "value": "El complemento Brave Conversion Engine (PRO) para WordPress es vulnerable a la omisi\u00f3n de autenticaci\u00f3n en todas las versiones hasta la 0.7.7 incluida. Esto se debe a que el complemento no restringe correctamente la identidad declarada al autenticarse con Facebook. Esto permite que atacantes no autenticados inicien sesi\u00f3n como otros usuarios, incluidos administradores."}], "id": "CVE-2025-7710", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-08-02T12:15:28.280", "references": [{"source": "security@wordfence.com", "url": "https://getbrave.io/brave-pro-changelog/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/604249c6-b23a-40e9-984d-2014f5c97249?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-288"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T19:27:43.480709+00:00", "value": {"mitigation_remediation": ["Upgrade the Brave Conversion Engine (PRO) plugin to version 0.7.8 or later, which resolves the authentication bypass.", "Temporarily disable Facebook authentication or remove the Facebook integration feature until the plugin can be updated, to stop the attack vector.", "Audit user accounts for anomalies and reset any accounts that may have been compromised; consider regenerating all administrative passwords."], "summary": {"action": "Apply Patch", "impact": "Authentication Bypass to Administrator"}, "threat_synthesis": {"affected_systems": "WordPress sites running the Brave Conversion Engine (PRO) plugin, all released versions up to and including 0.7.7. Any site that has not upgraded past this version is susceptible. The issue is tied to the Facebook authentication workflow within the plugin.", "description_and_impact": "The vulnerability in the Brave Conversion Engine (PRO) plugin allows an attacker who is not logged in to authenticate as any existing user on the WordPress site. By exploiting a flaw in the way the plugin validates a claimed identity from Facebook, the attacker can assume the privileges of that user, including administrative rights. This constitutes a serious loss of confidentiality, integrity, and availability because an adversary can modify content, install further malware or exfiltrate data. Based on the description, it is inferred that the attacker would exploit the Facebook authentication flow to achieve this bypass.", "risk_and_exploitability": "The CVSS score of 9.8 places this flaw in the critical range, and while the EPSS score is below 1% indicating a low current exploitation probability, the lack of active defensive measures means that once discovered, attackers can rapidly exploit the open authentication path. The vulnerability is not listed in the CISA KEV catalog, but the combination of its high severity and confirmed authentication bypass makes it a high priority for remediation. An attacker can simply send a crafted request to the login endpoint using a forged Facebook token, bypassing any credential checks and receiving an authenticated session with administrative privileges. Based on the description, it is inferred that this exploitation method involves manipulating the Facebook authentication flow."}}}}, "created": "2025-08-05T11:39:01.506469+00:00", "updated": "2026-04-21T19:30:06.093474+00:00", "vendors": ["brave", "brave$PRODUCT$brave", "wordpress", "wordpress$PRODUCT$wordpress"]}