CVE-2025-15030

CRITICAL EXPLOITED

User Profile Builder <3.15.2 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2025-15030 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 5 public exploits from researchers including XiaomingX, Nxploited, BastianXploited.

AI-analyzed exploit summary The repository contains a functional Python exploit for CVE-2025-15030, targeting WordPress plugins (WP Reset & Strict Access Assistant). The script includes user enumeration, session handling, and payload delivery mechanisms, indicating a complete exploit chain.

Description

The User Profile Builder WordPress plugin before 3.15.2 does not have a proper password reset process, allowing a few unauthenticated requests to reset the password of any user by knowing their username, such as administrator ones, and therefore gain access to their account

Exploits (5)

nomisec WORKING POC
by Nxploited · remote
https://github.com/Nxploited/CVE-2025-15030

The repository contains a functional Python exploit for CVE-2025-15030, targeting WordPress plugins (WP Reset & Strict Access Assistant). The script includes user enumeration, session handling, and payload delivery mechanisms, indicating a complete exploit chain.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: WordPress with WP Reset & Strict Access Assistant plugins
No auth needed
Prerequisites: WordPress installation · WP Reset plugin · Strict Access Assistant plugin
devstral-2 · analyzed Apr 18, 2026 Full analysis →
nomisec STUB
by BastianXploited · remote
https://github.com/BastianXploited/CVE-2025-15030

The repository contains only a README.md file with minimal content (just the CVE identifier) and no exploit code or technical details. This is a placeholder with no functional or analytical content.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unknown
No auth needed
devstral-2 · analyzed Mar 08, 2026 Full analysis →
nomisec STUB
by bastianhaxor1337 · poc
https://github.com/bastianhaxor1337/CVE-2025-15030

The repository contains only a README.md file with a CVE title and no additional content, indicating it is a placeholder or stub with no functional exploit code or technical details.

Classification
Stub 100%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unknown
No auth needed
devstral-2 · analyzed Mar 06, 2026 Full analysis →
nomisec STUB
by haxorsecv1-netizen · poc
https://github.com/haxorsecv1-netizen/CVE-2025-15030

The repository contains only a minimal README with the CVE identifier and no exploit code, technical details, or functional content.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: unknown
No auth needed
devstral-2 · analyzed Mar 01, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory exploit vdb-entry technical-description
https://wpscan.com/vulnerability/344cb1b1-342e-44b2-ae4a-3bb31be56b22/

Scores

CVSS v3 9.8
EPSS 0.0003
EPSS Percentile 7.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

VulnCheck KEV 2026-02-03
CWE
CWE-269
Status published
Products (1)
Unknown/User Profile Builder 1.1.27 - 3.15.2
Published Feb 02, 2026
Tracked Since Feb 18, 2026