Authentication Bypass Vulnerability in SureTriggers Automation Platform Plugin for WordPress
CVE-2025-3102

8.1HIGH

Key Information:

Vendor: WordPress
Status: Ottokit: All-in-one Automation Platform (formerly Suretriggers)
Vendor: CVE Published:; 10 April 2025

Badges

📈 Score: 1,050👾 Exploit Exists🟣 EPSS 80%📰 News Worthy

What is CVE-2025-3102?

CVE-2025-3102 represents a serious authentication bypass vulnerability in the SureTriggers Automation Platform plugin designed for WordPress, which facilitates the integration of various applications and plugins through automated workflows. The flaw is specifically rooted in a missing empty value check on the 'secret_key' parameter within the 'authenticate_user' function, affecting all plugin versions up to and including 1.0.78. This vulnerability exposes a critical weakness that allows unauthenticated attackers to create administrative accounts on affected WordPress sites if the plugin is installed and activated without being configured with an API key. Successful exploitation can grant attackers full control over the website, enabling them to install malicious plugins, modify site content, or redirect users to harmful websites.

Potential impact of CVE-2025-3102

Full Administrative Control: Exploitation of this vulnerability allows attackers to create unauthorized administrator accounts, giving them complete control over the affected WordPress site. This access can lead to the installation of malicious software and the alteration of site functionalities, facilitating further attacks or data theft.
Trust and Reputation Damage: Given the prevalence of WordPress in the web space, affected institutions may face significant reputational damage. A compromised site could serve malicious content, harming user trust and potentially leading to loss of business or legal repercussions for failing to protect user data.
Uncontrolled Malware Distribution: Attackers exploiting this vulnerability can modify web pages to serve malware to visitors or engage in spamming activities. This can lead to the propagation of malware to end-users, creating broader security risks and impacting website visitor safety.