CVE-2025-14313
Reflected XSS in Advance WP Query Filter Plugin Risks Admins
Publication date: 2025-12-30
Last updated on: 2025-12-30
Assigner: WPScan
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| advance | wp_query_search_filter | 1.0.10 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The provided resources do not specify how this vulnerability affects compliance with common standards and regulations such as GDPR or HIPAA.
Can you explain this vulnerability to me?
The Advance WP Query Search Filter WordPress plugin up to version 1.0.10 does not properly sanitize and escape a parameter before displaying it on the page. This flaw allows an attacker to perform a Reflected Cross-Site Scripting (XSS) attack, where malicious scripts can be injected and executed in the context of the affected website.
How can this vulnerability impact me? :
This vulnerability can be exploited to execute malicious scripts in the browser of high privilege users such as administrators. This could lead to unauthorized actions, theft of sensitive information, session hijacking, or other malicious activities performed with the privileges of the affected user.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by sending a crafted POST request to the admin-ajax.php endpoint targeting the 'taxo_ajax' action with a malicious 'excl' parameter containing a script payload. For example, using curl: curl -X POST -d 'action=taxo_ajax&excl=<script>alert(1)</script>' https://yourwordpresssite.com/wp-admin/admin-ajax.php and observing if the script executes or is reflected in the response. Detection involves checking if the 'excl' parameter is not properly sanitized and reflected back, indicating the presence of the reflected XSS vulnerability. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include restricting access to the vulnerable plugin's functionality to trusted users only, such as limiting admin-ajax.php access via firewall or security plugins, and avoiding use of the vulnerable plugin version (β€ 1.0.10) until a fix is available. Additionally, monitoring and blocking suspicious POST requests targeting the 'taxo_ajax' action with the 'excl' parameter can help reduce exploitation risk. Since no fix is currently available, consider disabling or removing the Advance WP Query Search Filter plugin until patched. [1]