{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-12958", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-11-10T16:16:36.749Z", "datePublished": "2026-01-07T08:21:54.071Z", "dateUpdated": "2026-04-08T17:21:51.529Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:21:51.529Z"}, "affected": [{"vendor": "rankology", "product": "Rankology SEO and Analytics Tool", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Rankology SEO and Analytics Tool plugin for WordPress is vulnerable to unauthorized modification of data due to an incorrect capability check on the 'rankology_code_block' page in all versions up to, and including, 2.0. This makes it possible for authenticated attackers, with Editor-level access and above, to add header and footer code blocks."}], "title": "Rankology SEO and Analytics Tool <= 2.0 - Incorrect Authorization to Authenticated (Editor+) Header & Footer Code Creation", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/c97a341c-23f5-49a9-ad05-1fb387047e3b?source=cve"}, {"url": "https://wordpress.org/plugins/rankology-seo-and-analytics-tool/"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3441084%40rankology-seo-and-analytics-tool&new=3441084%40rankology-seo-and-analytics-tool&sfp_email=&sfph_mail="}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-285 Improper Authorization", "cweId": "CWE-285", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "baseScore": 2.7, "baseSeverity": "LOW"}}], "credits": [{"lang": "en", "type": "finder", "value": "SangNQ29"}], "timeline": [{"time": "2025-11-11T15:39:52.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2026-01-06T19:26:19.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-07T16:28:24.680102Z", "id": "CVE-2025-12958", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-07T16:28:34.325Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-12958", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-07T16:28:24.680102Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-07T16:28:28.117Z"}}], "cna": {"title": "Rankology SEO and Analytics Tool <= 2.0 - Incorrect Authorization to Authenticated (Editor+) Header & Footer Code Creation", "credits": [{"lang": "en", "type": "finder", "value": "SangNQ29"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 2.7, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "rankology", "product": "Rankology SEO and Analytics Tool", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "2.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-11-11T15:39:52.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2026-01-06T19:26:19.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/c97a341c-23f5-49a9-ad05-1fb387047e3b?source=cve"}, {"url": "https://wordpress.org/plugins/rankology-seo-and-analytics-tool/"}], "descriptions": [{"lang": "en", "value": "The Rankology SEO and Analytics Tool plugin for WordPress is vulnerable to unauthorized modification of data due to an incorrect capability check on the 'rankology_code_block' page in all versions up to, and including, 2.0. This makes it possible for authenticated attackers, with Editor-level access and above, to add header and footer code blocks."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-285", "description": "CWE-285 Improper Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-01-07T08:21:54.071Z"}}}, "cveMetadata": {"cveId": "CVE-2025-12958", "state": "PUBLISHED", "dateUpdated": "2026-01-07T16:28:34.325Z", "dateReserved": "2025-11-10T16:16:36.749Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2026-01-07T08:21:54.071Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Rankology SEO and Analytics Tool plugin for WordPress is vulnerable to unauthorized modification of data due to an incorrect capability check on the 'rankology_code_block' page in all versions up to, and including, 2.0. This makes it possible for authenticated attackers, with Editor-level access and above, to add header and footer code blocks."}, {"lang": "es", "value": "El plugin Rankology SEO and Analytics Tool para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a una verificaci\u00f3n de capacidad incorrecta en la p\u00e1gina 'rankology_code_block' en todas las versiones hasta la 2.0, inclusive. Esto hace posible que atacantes autenticados, con acceso de nivel Editor y superior, a\u00f1adan bloques de c\u00f3digo de encabezado y pie de p\u00e1gina."}], "id": "CVE-2025-12958", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2026-01-07T12:16:47.280", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3441084%40rankology-seo-and-analytics-tool&new=3441084%40rankology-seo-and-analytics-tool&sfp_email=&sfph_mail="}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/rankology-seo-and-analytics-tool/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/c97a341c-23f5-49a9-ad05-1fb387047e3b?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-285"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T00:34:02.070595+00:00", "value": {"mitigation_remediation": ["Update Rankology SEO and Analytics Tool to the latest version (>=2.1) where the capability check is fixed.", "Restrict or remove the \"rankology_code_block\" capability from Editor and lower roles until the update is applied, ensuring that only administrators can add header/footer code.", "Continuously monitor the plugin\u2019s release notes and WordPress security advisories, and consider disabling the plugin on production sites until a patched version is available."], "summary": {"action": "Apply Update", "impact": "Unauthorized code injection via header/footer modification"}, "threat_synthesis": {"affected_systems": "The plugin Rankology SEO and Analytics Tool for WordPress, in all releases up to version 2.0, is affected. No other versions are reported as vulnerable.", "description_and_impact": "The vulnerability allows authenticated attackers with Editor-level access or higher to add arbitrary header and footer code blocks to a WordPress site using the Rankology SEO and Analytics Tool plugin. This flaw arises from a missing capability check, enabling users to inject code that could be executed when visitors load the site, potentially leading to cross\u2011site scripting, remote code execution, or the insertion of malware. The weakness is classified as CWE\u2011285, Unauthorized Access.", "risk_and_exploitability": "The CVSS score of 2.7 indicates low to moderate severity, and the EPSS score of less than 1% suggests a small likelihood of exploitation in the wild. The vulnerability is not listed in CISA KEV. Attackers must be authenticated as an Editor or higher to use this flaw, so the attack surface is limited to users who have been granted these roles on the site."}}}}, "created": "2026-01-08T09:49:58.217344+00:00", "updated": "2026-04-21T00:45:23.087372+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}