{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-12713", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-11-04T19:42:37.074Z", "datePublished": "2025-11-27T02:26:14.998Z", "dateUpdated": "2026-04-08T17:24:15.917Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:24:15.917Z"}, "affected": [{"vendor": "wpoets", "product": "Soundslides", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.4.2", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Soundslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the soundslides shortcode in all versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "title": "Soundslides <= 1.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via soundslides Shortcode", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/cdd7e9d1-a580-4b32-9365-7ce17cdc37cd?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L101"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L102"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L117"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L143"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Muhammad Yudha - DJ"}], "timeline": [{"time": "2025-11-26T14:19:37.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-11-28T14:39:35.024447Z", "id": "CVE-2025-12713", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-28T19:33:36.038Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-12713", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-11-28T14:39:35.024447Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-28T14:39:35.745Z"}}], "cna": {"title": "Soundslides <= 1.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via soundslides Shortcode", "credits": [{"lang": "en", "type": "finder", "value": "Muhammad Yudha - DJ"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "wpoets", "product": "Soundslides", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.4.2"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-11-26T14:19:37.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/cdd7e9d1-a580-4b32-9365-7ce17cdc37cd?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L101"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L102"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L117"}, {"url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L143"}], "descriptions": [{"lang": "en", "value": "The Soundslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the soundslides shortcode in all versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:24:15.917Z"}}}, "cveMetadata": {"cveId": "CVE-2025-12713", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:24:15.917Z", "dateReserved": "2025-11-04T19:42:37.074Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-11-27T02:26:14.998Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Soundslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the soundslides shortcode in all versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "id": "CVE-2025-12713", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-11-27T03:15:58.293", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L101"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L102"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L117"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/soundslides/tags/1.4.2/soundslide.php#L143"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/cdd7e9d1-a580-4b32-9365-7ce17cdc37cd?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T01:17:07.951531+00:00", "value": {"mitigation_remediation": ["Upgrade the Soundslides plugin to version 1.4.3 or later, which implements proper input sanitization and output escaping for shortcode attributes.", "If upgrading cannot be performed immediately, delete or sanitize all existing instances of the soundslides shortcode that contain user\u2011supplied attributes, or disable the shortcode functionality by editing the plugin\u2019s registration code.", "Restrict Contributor role permissions to prevent users from adding or editing shortcodes, or remove contributor access from untrusted users until the plugin can be updated."], "summary": {"action": "Patch", "impact": "Stored Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "All installations of Soundslides version 1.4.2 or earlier are vulnerable. WordPress sites using the 'soundslides' shortcode in posts, pages, or widgets are at risk, regardless of the overall WordPress or plugin settings. The vulnerability applies to any contributor\u2011level user who can add or edit content containing the shortcode. The vendor list identifies the product as wpoets:Soundslides; no additional version ranges are specified beyond 1.4.2.", "description_and_impact": "The Soundslides WordPress plugin has a stored XSS flaw that allows an authenticated user with Contributor or higher privileges to insert malicious JavaScript into shortcode attributes. Because the plugin does not properly sanitize or escape user\u2011supplied data, the payload is written to the database and rendered unescaped in the generated page, enabling arbitrary script execution in a visitor\u2019s browser. An attacker can deface content, steal session cookies, or perform other client\u2011side attacks on all users who view the affected page; the weakness is a classic input validation flaw (CWE\u201179).", "risk_and_exploitability": "The CVSS score of 6.4 indicates moderate severity, and the EPSS score of <1% suggests a low probability of exploitation in the wild. The flaw is not listed in CISA KEV, but its low exploitation likelihood does not negate the fact that any site granting Contributor access could be abused. Because authentication is the only prerequisite and the injection is stored, an attacker can launch the payload with minimal effort once authenticated, and all visitors to the affected pages will be impacted."}}}}, "created": "2025-11-27T16:26:31.451672+00:00", "updated": "2026-04-21T01:30:24.384818+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}