CVE-2025-47646

CRITICAL NUCLEI

Gilblas Ngunte Possi PSW Front-end Login & Registration <1.13 - Inf...

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2025-47646. PoCs published by Nxploited, Boshe99, RootHarpy. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository provides a detailed technical analysis of CVE-2025-47646, a broken authentication vulnerability in the PSW Front-end Login & Registration WordPress plugin. It includes a proof-of-concept request demonstrating how unauthenticated attackers can exploit the plugin's registration mechanism to create accounts with elevated privileges if the site's default_role is misconfigured.

Description

Weak Password Recovery Mechanism for Forgotten Password vulnerability in Gilblas Ngunte Possi PSW Front-end Login & Registration psw-login-and-registration allows Password Recovery Exploitation.This issue affects PSW Front-end Login & Registration: from n/a through <= 1.13.

Exploits (3)

nomisec WRITEUP 2 stars
by Nxploited · poc
https://github.com/Nxploited/CVE-2025-47646

The repository provides a detailed technical analysis of CVE-2025-47646, a broken authentication vulnerability in the PSW Front-end Login & Registration WordPress plugin. It includes a proof-of-concept request demonstrating how unauthenticated attackers can exploit the plugin's registration mechanism to create accounts with elevated privileges if the site's default_role is misconfigured.

Classification
Writeup 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: PSW Front-end Login & Registration <= 1.12
No auth needed
Prerequisites: WordPress site with PSW Front-end Login & Registration plugin <= 1.12 · Misconfigured default_role setting (e.g., administrator)
devstral-2 · analyzed Feb 18, 2026 Full analysis →
github WORKING POC
by Boshe99 · pythonpoc
https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2025-47646

The repository contains functional exploit code for CVE-2025-47646, targeting a WordPress plugin (3DPrint Lite 1.9.1.4) with an arbitrary file upload vulnerability. The Python script demonstrates the exploit by uploading a malicious file to a vulnerable endpoint.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Plugin 3DPrint Lite 1.9.1.4
No auth needed
Prerequisites: Vulnerable WordPress plugin installed · Network access to the target
devstral-2 · analyzed Feb 27, 2026 Full analysis →
nomisec WORKING POC
by RootHarpy · poc
https://github.com/RootHarpy/CVE-2025-47646

This repository contains a functional Python exploit for CVE-2025-47646, targeting an unauthenticated privilege escalation vulnerability in the WordPress PSW Front-end Login Registration Plugin ≤ 1.12. The exploit registers a new user account via an exposed AJAX action without proper validation.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: WordPress PSW Front-end Login Registration Plugin ≤ 1.12
No auth needed
Prerequisites: Target WordPress site with vulnerable plugin installed · Network access to the target
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

PSW Front-end Login & Registration 1.13 - Weak Password Recovery
CRITICALby pussycat0x

References (2)

Core 2

Scores

CVSS v3 9.8
EPSS 0.2175
EPSS Percentile 97.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-640
Status published
Products (2)
Gilblas Ngunte Possi/PSW Front-end Login & Registration < 1.13
Gilblas Ngunte Possi/PSW Front-end Login &amp; Registration < 1.13
Published May 23, 2025
Tracked Since Feb 18, 2026