CVE-2025-6462
BaseFortify
Publication date: 2025-06-29
Last updated on: 2025-07-08
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ieonly | ez_sql_reports_shortcode_widget_and_db_backup | to 5.25.25 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the EZ SQL Reports Shortcode Widget and DB Backup WordPress plugin. It occurs because the plugin does not properly sanitize and escape user-supplied attributes in the SQLREPORT shortcode. Authenticated users with contributor-level access or higher can inject malicious scripts into pages via the Report_Name parameter. These scripts then execute whenever any user accesses the infected page, potentially compromising user data or site integrity. [1, 2]
How can this vulnerability impact me? :
If exploited, this vulnerability allows an attacker with contributor-level access or higher to inject arbitrary web scripts into pages on your WordPress site. This can lead to unauthorized actions such as stealing user credentials, hijacking user sessions, defacing the website, or performing other malicious activities that execute in the context of users visiting the affected pages. It compromises the security and trustworthiness of your site. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
You can detect this vulnerability by checking if your WordPress installation is running the EZ SQL Reports Shortcode Widget and DB Backup plugin version 5.25.11 or earlier. Look for pages or posts using the [SQLREPORT] shortcode that might contain unsanitized user input in the Report_Name attribute. There are no specific network commands provided, but inspecting the plugin version and shortcode usage in your WordPress admin or codebase is recommended. [2]
What immediate steps should I take to mitigate this vulnerability?
Immediately update the EZ SQL Reports Shortcode Widget and DB Backup plugin to version 5.25.25 or later, which includes sanitization of the Report_Name variable to prevent Stored Cross-Site Scripting (XSS) and other security improvements. Additionally, ensure that only trusted users have contributor-level access or higher, and consider reviewing shortcode usage to avoid injection of malicious scripts. [1, 2]