CVE-2025-15157: CWE-862 Missing Authorization in starfishwp Starfish Review Generation & Marketing for WordPress
CVE-2025-15157 is a high-severity vulnerability in the Starfish Review Generation & Marketing WordPress plugin, affecting all versions up to 3. 1. 19. The flaw arises from a missing authorization check in the 'srm_restore_options_defaults' function, allowing authenticated users with Subscriber-level access or higher to modify arbitrary site options. Attackers can exploit this to change the default user role to administrator and enable user registration, effectively escalating privileges and gaining full administrative control over the WordPress site. No user interaction is required beyond authentication, and the vulnerability can be exploited remotely over the network. Although no known exploits are currently in the wild, the ease of exploitation and potential impact on confidentiality, integrity, and availability make this a critical risk for affected sites. Organizations using this plugin should prioritize patching or applying mitigations immediately to prevent unauthorized site takeover.
AI Analysis
Technical Summary
The Starfish Review Generation & Marketing plugin for WordPress suffers from a missing authorization vulnerability identified as CVE-2025-15157 (CWE-862). Specifically, the 'srm_restore_options_defaults' function lacks proper capability checks, allowing any authenticated user with at least Subscriber privileges to invoke it and modify arbitrary WordPress options. This includes critical options such as the default user role for new registrations and enabling user registration itself. By exploiting this, an attacker can set the default role to 'administrator' and enable open user registration, thereby creating new admin accounts without legitimate authorization. This vulnerability affects all plugin versions up to and including 3.1.19. The CVSS v3.1 base score is 8.8 (high), reflecting network attack vector, low attack complexity, requiring only low privileges, no user interaction, and high impact on confidentiality, integrity, and availability. The flaw allows privilege escalation from low-level authenticated users to full administrative control, compromising the entire WordPress site. No public patches or exploits are currently reported, but the vulnerability is publicly disclosed and should be addressed promptly.
Potential Impact
The impact of this vulnerability is severe for organizations running WordPress sites with the Starfish Review Generation & Marketing plugin installed. Attackers with minimal authenticated access can escalate privileges to administrator level, enabling full control over the website. This can lead to unauthorized content modification, data theft, insertion of malicious code or backdoors, defacement, and complete site takeover. The ability to create new admin users also facilitates persistent access and lateral movement within the hosting environment. For e-commerce, membership, or business-critical sites, this could result in significant financial loss, reputational damage, and regulatory compliance violations. The vulnerability affects the confidentiality, integrity, and availability of the affected WordPress installations, potentially impacting millions of sites worldwide given WordPress's market share and the plugin's usage.
Mitigation Recommendations
Immediate mitigation steps include disabling the Starfish Review Generation & Marketing plugin until a security patch is released. Administrators should restrict user roles to trusted users only and audit existing user accounts for unauthorized administrators. Implementing Web Application Firewall (WAF) rules to block requests invoking the vulnerable function can provide temporary protection. Monitoring logs for suspicious option changes or new admin user creations is critical. Site owners should upgrade to a patched version once available or apply custom patches to enforce capability checks on the 'srm_restore_options_defaults' function. Additionally, enforcing strong authentication mechanisms and limiting user registrations can reduce risk. Regular backups and incident response plans should be in place to recover from potential compromises.
Affected Countries
United States, United Kingdom, Germany, Canada, Australia, France, India, Brazil, Japan, Netherlands, Italy, Spain
CVE-2025-15157: CWE-862 Missing Authorization in starfishwp Starfish Review Generation & Marketing for WordPress
Description
CVE-2025-15157 is a high-severity vulnerability in the Starfish Review Generation & Marketing WordPress plugin, affecting all versions up to 3. 1. 19. The flaw arises from a missing authorization check in the 'srm_restore_options_defaults' function, allowing authenticated users with Subscriber-level access or higher to modify arbitrary site options. Attackers can exploit this to change the default user role to administrator and enable user registration, effectively escalating privileges and gaining full administrative control over the WordPress site. No user interaction is required beyond authentication, and the vulnerability can be exploited remotely over the network. Although no known exploits are currently in the wild, the ease of exploitation and potential impact on confidentiality, integrity, and availability make this a critical risk for affected sites. Organizations using this plugin should prioritize patching or applying mitigations immediately to prevent unauthorized site takeover.
AI-Powered Analysis
Technical Analysis
The Starfish Review Generation & Marketing plugin for WordPress suffers from a missing authorization vulnerability identified as CVE-2025-15157 (CWE-862). Specifically, the 'srm_restore_options_defaults' function lacks proper capability checks, allowing any authenticated user with at least Subscriber privileges to invoke it and modify arbitrary WordPress options. This includes critical options such as the default user role for new registrations and enabling user registration itself. By exploiting this, an attacker can set the default role to 'administrator' and enable open user registration, thereby creating new admin accounts without legitimate authorization. This vulnerability affects all plugin versions up to and including 3.1.19. The CVSS v3.1 base score is 8.8 (high), reflecting network attack vector, low attack complexity, requiring only low privileges, no user interaction, and high impact on confidentiality, integrity, and availability. The flaw allows privilege escalation from low-level authenticated users to full administrative control, compromising the entire WordPress site. No public patches or exploits are currently reported, but the vulnerability is publicly disclosed and should be addressed promptly.
Potential Impact
The impact of this vulnerability is severe for organizations running WordPress sites with the Starfish Review Generation & Marketing plugin installed. Attackers with minimal authenticated access can escalate privileges to administrator level, enabling full control over the website. This can lead to unauthorized content modification, data theft, insertion of malicious code or backdoors, defacement, and complete site takeover. The ability to create new admin users also facilitates persistent access and lateral movement within the hosting environment. For e-commerce, membership, or business-critical sites, this could result in significant financial loss, reputational damage, and regulatory compliance violations. The vulnerability affects the confidentiality, integrity, and availability of the affected WordPress installations, potentially impacting millions of sites worldwide given WordPress's market share and the plugin's usage.
Mitigation Recommendations
Immediate mitigation steps include disabling the Starfish Review Generation & Marketing plugin until a security patch is released. Administrators should restrict user roles to trusted users only and audit existing user accounts for unauthorized administrators. Implementing Web Application Firewall (WAF) rules to block requests invoking the vulnerable function can provide temporary protection. Monitoring logs for suspicious option changes or new admin user creations is critical. Site owners should upgrade to a patched version once available or apply custom patches to enforce capability checks on the 'srm_restore_options_defaults' function. Additionally, enforcing strong authentication mechanisms and limiting user registrations can reduce risk. Regular backups and incident response plans should be in place to recover from potential compromises.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Wordfence
- Date Reserved
- 2025-12-27T18:33:56.380Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 698f9c59c9e1ff5ad86a8ebf
Added to database: 2/13/2026, 9:49:13 PM
Last enriched: 2/20/2026, 10:30:54 PM
Last updated: 2/21/2026, 12:17:38 AM
Views: 28
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2026-27203: CWE-15: External Control of System or Configuration Setting in YosefHayim ebay-mcp
HighCVE-2026-27168: CWE-122: Heap-based Buffer Overflow in HappySeaFox sail
HighCVE-2026-27134: CWE-287: Improper Authentication in strimzi strimzi-kafka-operator
HighCVE-2026-27190: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in denoland deno
HighCVE-2026-27026: CWE-770: Allocation of Resources Without Limits or Throttling in py-pdf pypdf
MediumActions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.