{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-11172", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-09-29T17:24:46.884Z", "datePublished": "2025-10-24T08:24:03.767Z", "dateUpdated": "2026-04-08T17:15:14.957Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:15:14.957Z"}, "affected": [{"vendor": "plagiarismchecker", "product": "Check Plagiarism", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Check Plagiarism plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the chk_plag_mine_plugin_wpse10500_admin_action() function in all versions up to, and including, 2.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the API key."}], "title": "Check Plagiarism <= 2.0 - Missing Authorization to Authenticated (Subscriber+) Settings Update", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ade64c1d-65e6-4424-b2da-dc63b49f08aa?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/check-plagiarism/trunk/index.php#L760"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Jonas Benjamin Friedli"}], "timeline": [{"time": "2025-10-23T19:57:54.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-10-24T14:36:19.549331Z", "id": "CVE-2025-11172", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-24T14:36:26.966Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-11172", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-10-24T14:36:19.549331Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-24T14:36:23.302Z"}}], "cna": {"title": "Check Plagiarism <= 2.0 - Missing Authorization to Authenticated (Subscriber+) Settings Update", "credits": [{"lang": "en", "type": "finder", "value": "Jonas Benjamin Friedli"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "plagiarismchecker", "product": "Check Plagiarism", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "2.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-10-23T19:57:54.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ade64c1d-65e6-4424-b2da-dc63b49f08aa?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/check-plagiarism/trunk/index.php#L760"}], "descriptions": [{"lang": "en", "value": "The Check Plagiarism plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the chk_plag_mine_plugin_wpse10500_admin_action() function in all versions up to, and including, 2.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the API key."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:15:14.957Z"}}}, "cveMetadata": {"cveId": "CVE-2025-11172", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:15:14.957Z", "dateReserved": "2025-09-29T17:24:46.884Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-10-24T08:24:03.767Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Check Plagiarism plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the chk_plag_mine_plugin_wpse10500_admin_action() function in all versions up to, and including, 2.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the API key."}], "id": "CVE-2025-11172", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-10-24T09:15:42.270", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/check-plagiarism/trunk/index.php#L760"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ade64c1d-65e6-4424-b2da-dc63b49f08aa?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T02:06:43.100108+00:00", "value": {"mitigation_remediation": ["Update the Check Plagiarism plugin to the latest version that includes the authorization check fix.", "Revoke or limit the ability of subscriber\u2011level users to modify plugin settings; ensure they lack the capability to call the chk_plag_mine_plugin_wpse10500_admin_action() function.", "Monitor audit logs for changes to the API key and investigate any unauthorized modifications."], "summary": {"action": "Immediate Patch", "impact": "Unauthorized Configuration Modification"}, "threat_synthesis": {"affected_systems": "This issue affects the plagiarismchecker Check Plagiarism WordPress plugin, versions 1.x through 2.0 inclusive. WordPress sites that have installed any of these older releases are susceptible. No other products or platforms are listed as affected.", "description_and_impact": "The Check Plagiarism plugin for WordPress contains a missing capability check on the chk_plag_mine_plugin_wpse10500_admin_action() function. Because the access control guard is omitted, any authenticated user with Subscriber or higher privileges can invoke the function and update the plugin\u2019s API key. This flaw maps to CWE\u2011862 and permits the attacker to change critical configuration without authorization, potentially enabling further misuse or service interruption.", "risk_and_exploitability": "The CVSS score of 4.3 indicates moderate risk, while the EPSS score of <1% suggests a low probability of exploitation in the wild. The flaw is not included in the CISA KEV list. An attacker must already possess a valid subscriber account, but such accounts are common on multi\u2011user WordPress installations. Once authenticated, the exploitation path is straightforward: the attacker calls the vulnerable admin action and replaces the API key."}}}}, "created": "2025-10-27T22:13:13.391277+00:00", "updated": "2026-04-21T02:15:06.521091+00:00", "vendors": ["plagiarismcheckerx", "plagiarismcheckerx$PRODUCT$plagiarism_checker_x", "wordpress", "wordpress$PRODUCT$wordpress"]}