Privilege Escalation in N-Media Simple User Registration Plugin
CVE-2025-53428

8.8HIGH

Key Information:

Vendor: WordPress
Status: Simple User Registration
Vendor: CVE Published:; 22 October 2025

What is CVE-2025-53428?

The N-Media Simple User Registration plugin is susceptible to an incorrect privilege assignment vulnerability that allows unauthorized users to escalate their privileges. This flaw affects all versions up to and including 6.4 and poses a security risk that could allow malicious actors to gain access to higher privileges than intended, potentially compromising the integrity of the site and its data. Users of this plugin are urged to review their installations and take appropriate security measures.

Affected Version(s)

Simple User Registration <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/wp-r...

vdb-entry

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 22, 2025
Vulnerability Reserved
Jun 30, 2025

Credit

Peter Thaleikis (Patchstack Alliance)

JSON

WordPress

What is CVE-2025-53428?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit