Unrated severityNVD Advisory· Published Dec 3, 2025· Updated Dec 8, 2025

WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover

CVE-2025-13390

Description

The WP Directory Kit plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.4.4 due to incorrect implementation of the authentication algorithm in the "wdk_generate_auto_login_link" function. This is due to the feature using a cryptographically weak token generation mechanism. This makes it possible for unauthenticated attackers to gain administrative access and achieve full site takeover via the auto-login endpoint with a predictable token.

Affected products

Wpdirectorykit/Wp Directory Kitllm-fuzzy
Range: <= 1.4.4
listingthemes/WP Directory Kitv5
Range: 1.4.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

plugins.trac.wordpress.org/changeset/3400599/wpdirectorykit/mitre
ryankozak.com/posts/cve-2025-13390/mitre
www.wordfence.com/threat-intel/vulnerabilities/id/6598d171-e68c-4d2f-9cd1-f1574fa90433mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.038
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000