CVE-2025-1667

Name of the Vulnerable Software and Affected Versions: School Management System – WPSchoolPress plugin for WordPress versions up to, and including, 2.2.16

Description: The issue is related to a missing capability check on the wpsp UpdateTeacher() function, allowing authenticated attackers with teacher-level access and above to update arbitrary user details, including email, which enables them to request a password reset and access arbitrary user accounts, including administrators.

Recommendations: For versions up to, and including, 2.2.16, update to a version that includes a fix for the missing capability check on the wpsp UpdateTeacher() function to prevent privilege escalation. As a temporary workaround, consider restricting access to the wpsp UpdateTeacher() function until a patch is available.