Privilege Escalation in Real Estate 7 WordPress Theme by Contempo Themes
CVE-2024-13421
9.8CRITICAL
What is CVE-2024-13421?
The Real Estate 7 theme for WordPress is susceptible to Privilege Escalation due to inadequate role restrictions during user registration. Attackers can exploit this flaw to create unauthorized administrative accounts, thereby gaining elevated access to the website. This vulnerability poses significant risks as it allows unauthenticated users to manipulate site settings and data without proper authorization. Website owners using this theme should take immediate action to secure their installations and prevent potential exploitation.
Affected Version(s)
Real Estate 7 WordPress * <= 3.5.1