CVE-2025-4606
The Sala · Startup & SaaS WordPress Theme
The Sala WordPress theme is vulnerable to privilege escalation via account takeover in versions 1.1.4 and earlier due to insufficient validation.
Executive summary
The Sala WordPress theme contains a critical privilege escalation vulnerability that allows unauthenticated attackers to perform account takeovers.
Vulnerability
This vulnerability involves a flaw in the theme's account management logic, enabling unauthenticated attackers to hijack user accounts and escalate privileges within the WordPress environment.
Business impact
The ability for an unauthenticated attacker to take over administrative or user accounts poses a catastrophic risk to organizational data integrity and system availability. Given the CVSS score of 9.8, this vulnerability allows for complete compromise of the WordPress site, potentially leading to unauthorized data exfiltration or malicious code injection.
Remediation
Immediate Action: Administrators must update to the latest version of the theme immediately to resolve the flawed authentication logic.
Proactive Monitoring: Review WordPress user logs for suspicious account modifications, unauthorized password resets, or unexpected administrative role assignments.
Compensating Controls: Implement a Web Application Firewall (WAF) with rules configured to block suspicious requests targeting account registration or authentication endpoints.
Exploitation status
Public Exploit Available: Not specified
Analyst recommendation
The severity of this privilege escalation flaw necessitates an immediate update to the latest version of The Sala theme. Failure to patch allows attackers to gain full control of the application, and administrators should prioritize this remediation to prevent unauthorized system access.