Insecure Direct Object Reference in User Registration Plugin for WordPress
CVE-2025-3282

5.3MEDIUM

Key Information:

Vendor: WordPress
Status: User Registration & Membership – Custom Registration Form, Login Form, And User Profile
Vendor: CVE Published:; 12 April 2025

Summary

The User Registration & Membership plugin for WordPress, affecting versions up to and including 4.1.3, is exposed to an Insecure Direct Object Reference vulnerability. This occurs due to insufficient validation on the user-controlled 'membership_id' parameter within the user_registration_membership_register_member() function. As a result, unauthenticated attackers have the potential to alter any user's membership status, granting them the ability to switch between active and inactive membership types without proper authorization. It is crucial for website administrators to address this vulnerability to ensure the integrity of user memberships and safeguard against unauthorized access.

Affected Version(s)

User Registration & Membership – Custom Registration Form, Login Form, and User Profile * <= 4.1.3

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset/3268617/user...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 12, 2025
Vulnerability Reserved
Apr 4, 2025

Credit

wesley