What is the CVSS score of CVE-2025-34077?

CVE-2025-34077 has a CVSS 4.0 base score of 10.0 (Critical). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H. EPSS exploitation probability: 72.4%.

Which versions of PHP are affected by CVE-2025-34077?

CVE-2025-34077 presents critical security risk, a code injection vulnerability rated CVSS 10.0.

Is there a public PoC exploit available for CVE-2025-34077?

Yes, a public proof-of-concept exploit is available for CVE-2025-34077. Prioritise patching immediately. EPSS: 72.4%.

How to fix or mitigate CVE-2025-34077?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. Validate that input sanitization is in place for all user-controlled parameters.

PHP CVE-2025-34077

EUVD-2025-20764 CRITICAL

Code Injection (CWE-94)

2025-07-09 disclosure@vulncheck.com

PHP WordPress Authentication Bypass RCE Code Injection

10.0

CVSS 4.0

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Lifecycle Timeline

EUVD ID Assigned

Mar 16, 2026 - 06:20 euvd

EUVD-2025-20764

Analysis Generated

Mar 16, 2026 - 06:20 vuln.today

PoC Detected

Jul 10, 2025 - 13:18 vuln.today

Public exploit code

CVE Published

Jul 09, 2025 - 01:15 nvd

CRITICAL 10.0

DescriptionNVD

An authentication bypass vulnerability exists in the WordPress Pie Register plugin ≤ 3.7.1.4 that allows unauthenticated attackers to impersonate arbitrary users by submitting a crafted POST request to the login endpoint. By setting social_site=true and manipulating the user_id_social_site parameter, an attacker can generate a valid WordPress session cookie for any user ID, including administrators. Once authenticated, the attacker may exploit plugin upload functionality to install a malicious plugin containing arbitrary PHP code, resulting in remote code execution on the underlying server.

AnalysisAI

The Pie Register WordPress plugin versions up to 3.7.1.4 contain an authentication bypass that allows unauthenticated attackers to log in as any user including administrators. By submitting a crafted POST request with social_site=true and a target user_id_social_site value, attackers generate valid WordPress sessions for arbitrary accounts.

Technical ContextAI

The plugin's login endpoint accepts social_site and user_id_social_site parameters that bypass normal password validation. When social_site=true is set, the plugin generates a WordPress session for the user specified by user_id_social_site without verifying any OAuth token or social platform authentication. An attacker only needs to know or guess a valid user ID (user ID 1 is typically the admin).

RemediationAI

Update Pie Register immediately or remove the plugin. Audit WordPress sessions for unauthorized admin logins. Force logout all active sessions. Review installed plugins for unauthorized additions.

More from same product – last 7 days

CVE-2026-7862 HIGH This Week POC

8.6 May 28

Unauthenticated refund abuse in the Eupago Gateway for WooCommerce WordPress plugin before 4.7.2 lets remote attackers t

CVE-2026-8760 CRITICAL Act Now

9.8 May 27

Authentication bypass in the Login with OTP plugin for WordPress (all versions up to and including 1.6) lets unauthentic

CVE-2026-42727 CRITICAL Act Now

9.3 May 27

Blind SQL injection in the RealMag777 'Active Products Tables for WooCommerce' WordPress plugin (versions up to and incl

CVE-2026-42761 CRITICAL Act Now

9.3 May 27

Blind SQL injection in the RealMag777 "Active Products Tables for WooCommerce" WordPress plugin (all versions up to and

CVE-2026-8832 HIGH This Week

8.8 May 27

Remote code execution in the WPCode WordPress plugin (versions through 2.3.5) lets authenticated author-level users run

CVE-2025-34077 vulnerability details – vuln.today

Back