Authentication Bypass Vulnerability in SureTriggers Automation Platform Plugin for WordPress
CVE-2025-3102

8.1HIGH

Key Information:

Badges

📈 Score: 1,050👾 Exploit Exists🟣 EPSS 80%📰 News Worthy

What is CVE-2025-3102?

CVE-2025-3102 represents a serious authentication bypass vulnerability in the SureTriggers Automation Platform plugin designed for WordPress, which facilitates the integration of various applications and plugins through automated workflows. The flaw is specifically rooted in a missing empty value check on the 'secret_key' parameter within the 'authenticate_user' function, affecting all plugin versions up to and including 1.0.78. This vulnerability exposes a critical weakness that allows unauthenticated attackers to create administrative accounts on affected WordPress sites if the plugin is installed and activated without being configured with an API key. Successful exploitation can grant attackers full control over the website, enabling them to install malicious plugins, modify site content, or redirect users to harmful websites.

Potential impact of CVE-2025-3102

  1. Full Administrative Control: Exploitation of this vulnerability allows attackers to create unauthorized administrator accounts, giving them complete control over the affected WordPress site. This access can lead to the installation of malicious software and the alteration of site functionalities, facilitating further attacks or data theft.

  2. Trust and Reputation Damage: Given the prevalence of WordPress in the web space, affected institutions may face significant reputational damage. A compromised site could serve malicious content, harming user trust and potentially leading to loss of business or legal repercussions for failing to protect user data.

  3. Uncontrolled Malware Distribution: Attackers exploiting this vulnerability can modify web pages to serve malware to visitors or engage in spamming activities. This can lead to the propagation of malware to end-users, creating broader security risks and impacting website visitor safety.

Affected Version(s)

OttoKit: All-in-One Automation Platform (Formerly SureTriggers) * <= 1.0.78

News Articles

OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

A critical OttoKit plugin flaw CVE-2025-3102 exploited within hours lets attackers create admin accounts unchecked.

References

EPSS Score

80% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit known to exist

  • 📰

    First article discovered by The Hacker News

  • Vulnerability published

  • Vulnerability Reserved

Credit

Michael Mazzolini
.
CVE-2025-3102 : Authentication Bypass Vulnerability in SureTriggers Automation Platform Plugin for WordPress