CVE-2025-14998 | The Branda plugin for WordPress is vulnerable to privilege e… | CVSS 9.8 CRITICAL

Description

The Branda plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.4.24. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.

Metadata

CVE ID: CVE-2025-14998
State: PUBLISHED
Assigner: Wordfence
Reserved: 2025-12-20 15:01 UTC
Published: 2026-01-02 01:48 UTC
Last updated: 2026-04-08 17:15 UTC
Primary CWE: CWE-639
CWE-639 Authorization Bypass Through User-Controlled Key
Vendor / Product: wpmudev / Branda – White Label & Branding, Free Login Page Customizer
Sources: cve.org · NVD

Severity & Metrics

9.8 CRITICAL CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: none
Automatable: yes
Tech. Impact: total

Affected products (1)

Vendor	Product	Platform	Versions
wpmudev	Branda – White Label & Branding, Free Login Page Customizer	—	0 ≤ 3.4.24

Weakness (CWE)

CWE	Source	Description
CWE-639	cna	CWE-639 Authorization Bypass Through User-Controlled Key

CVSS scores (1)

Score	Severity	Version	Source	Vector
9.8	CRITICAL	3.1	cna	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (3)