Primary

Context

B Blocks WordPress Plugin Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in the B Blocks plugin for WordPress, affecting all versions through 2.0.6. The issue arises from missing authorization and inadequate input validation in the rgfr_registration() function, allowing unauthenticated attackers to create accounts with administrator privileges.

Impact

Exploitation of this vulnerability allows unauthenticated users to create accounts with administrative rights on the WordPress site.

Remediation

Users are advised to update the B Blocks plugin to version 2.0.7 or later, where this vulnerability has been patched.

Added: Aug 12, 2025, 5:19 AM

Updated: Aug 12, 2025, 5:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

8.1

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

8.1

remediation

7.7

relevance

0.4

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

B Blocks WordPress Plugin Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating