CVE-2025-10125
BaseFortify
Publication date: 2025-09-17
Last updated on: 2025-09-17
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| memberlite | shortcodes | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-80 | The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters such as "<", ">", and "&" that could be interpreted as web-scripting elements when they are sent to a downstream component that processes web pages. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the Memberlite Shortcodes WordPress plugin, specifically in the 'row' shortcode. It occurs because the plugin does not properly sanitize and escape user-supplied attributes, allowing authenticated users with contributor-level access or higher to inject malicious scripts. These scripts are then stored and executed whenever any user views the affected page. [1]
How can this vulnerability impact me? :
An attacker with contributor-level access or higher can exploit this vulnerability to inject arbitrary JavaScript code into pages using the 'row' shortcode. This malicious code will execute in the browsers of users who visit the infected pages, potentially leading to session hijacking, defacement, or other malicious actions that compromise user security and site integrity. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
To detect this vulnerability, you can scan your WordPress installation for the presence of the Memberlite Shortcodes plugin version 1.4 or earlier, as these versions are vulnerable. Checking plugin versions can be done via WP-CLI with the command: `wp plugin list | grep memberlite-shortcodes`. Additionally, review pages or posts that use the '[row]' shortcode for suspicious or unexpected script injections. There are no specific network commands to detect this vulnerability since it is a stored XSS triggered by authenticated users with contributor-level access or higher injecting malicious scripts via shortcode attributes. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
The immediate mitigation step is to update the Memberlite Shortcodes plugin to version 1.4.1 or later, which includes a security fix that sanitizes and escapes the 'class' attribute in the '[row]' shortcode to prevent stored XSS attacks. Additionally, restrict contributor-level and higher user permissions to trusted users only until the update is applied. [1]