Directorythemes Tiger vulnerabilities
2 known vulnerabilities affecting directorythemes/tiger.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-13675P2CRITICALCVSS 9.8≤ 101.2.12025-11-27
CVE-2025-13675 [CRITICAL] CWE-269 CVE-2025-13675: The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and inclu
The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 101.2.1. This is due to the 'paypal-submit.php' file not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply the 'administrator' role during registration and gain administrator a
nvd
CVE-2025-13680P2HIGHCVSS 8.8≤ 101.2.12025-11-27
CVE-2025-13680 [HIGH] CWE-269 CVE-2025-13680: The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and inclu
The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 101.2.1. This is due to the plugin allowing a user to update the user role through the $user->set_role() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of a
nvd