{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-13000", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "state": "PUBLISHED", "assignerShortName": "WPScan", "dateReserved": "2025-11-11T12:40:10.430Z", "datePublished": "2025-12-02T06:00:07.107Z", "dateUpdated": "2026-04-02T12:39:53.352Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2026-04-02T12:39:53.352Z"}, "title": "DB Access <= 0.8.7 - Subscriber+ SQLi", "problemTypes": [{"descriptions": [{"description": "CWE-89 SQL Injection", "lang": "en", "type": "CWE"}]}], "affected": [{"vendor": "Unknown", "product": "db-access", "versions": [{"status": "affected", "versionType": "semver", "version": "0", "lessThanOrEqual": "0.8.7"}], "defaultStatus": "unknown"}], "descriptions": [{"lang": "en", "value": "The db-access WordPress plugin through 0.8.7 does not have authorization in an AJAX action, allowing any authenticated users, such as subscriber to perform SQLI attacks"}], "references": [{"url": "https://wpscan.com/vulnerability/aec53f87-6500-4c8a-925a-146be61bbabf/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "credits": [{"lang": "en", "value": "Yousof Nahya", "type": "finder"}, {"lang": "en", "value": "WPScan", "type": "coordinator"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "WPScan CVE Generator"}}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-12-02T13:34:21.609744Z", "id": "CVE-2025-13000", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-02T13:34:41.546Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-13000", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-12-02T13:34:21.609744Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-02T13:34:38.611Z"}}], "cna": {"title": "DB Access <= 0.8.7 - Subscriber+ SQLi", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Yousof Nahya"}, {"lang": "en", "type": "coordinator", "value": "WPScan"}], "affected": [{"vendor": "Unknown", "product": "db-access", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "0.8.7"}], "defaultStatus": "unknown"}], "references": [{"url": "https://wpscan.com/vulnerability/aec53f87-6500-4c8a-925a-146be61bbabf/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "x_generator": {"engine": "WPScan CVE Generator"}, "descriptions": [{"lang": "en", "value": "The db-access WordPress plugin through 0.8.7 does not have authorization in an AJAX action, allowing any authenticated users, such as subscriber to perform SQLI attacks"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-89 SQL Injection"}]}], "providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2026-04-02T12:39:53.352Z"}}}, "cveMetadata": {"cveId": "CVE-2025-13000", "state": "PUBLISHED", "dateUpdated": "2026-04-02T12:39:53.352Z", "dateReserved": "2025-11-11T12:40:10.430Z", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "datePublished": "2025-12-02T06:00:07.107Z", "assignerShortName": "WPScan"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:jimbob1953:db-access:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A8E87533-7D7F-41D2-88D9-1C6E68B8C5C8", "versionEndIncluding": "0.8.7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The db-access WordPress plugin through 0.8.7 does not have authorization in an AJAX action, allowing any authenticated users, such as subscriber to perform SQLI attacks"}], "id": "CVE-2025-13000", "lastModified": "2026-01-30T20:42:11.060", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 4.0, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-12-02T06:15:45.160", "references": [{"source": "contact@wpscan.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/aec53f87-6500-4c8a-925a-146be61bbabf/"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-27T22:45:11.825798+00:00", "value": {"mitigation_remediation": ["Upgrade the db-access plugin to a version newer than 0.8.7 to obtain the vendor\u2011supplied fix.", "If upgrading is not immediately possible, restrict the plugin\u2019s AJAX endpoint so that only administrators can access it.", "After applying a patch or restriction, conduct a verification of the authorization checks in the AJAX action to ensure the vulnerability is fully remediated."], "summary": {"action": "Patch Immediately", "impact": "SQL Injection"}, "threat_synthesis": {"affected_systems": "WordPress sites using the db-access plugin version 0.8.7 or earlier are affected. The specific product is listed as db-access under the vendor identifier Unknown:db-access. No other vendors or products are reported as impacted.", "description_and_impact": "The db-access WordPress plugin through version 0.8.7 has a missing authorization check in an AJAX action. This flaw allows any authenticated user\u2014including users with subscriber privileges\u2014to inject arbitrary SQL statements via the vulnerable endpoint. An attacker can therefore read, modify, or delete sensitive data stored in the WordPress database, compromising data confidentiality and integrity.", "risk_and_exploitability": "The CVSS score of 7.7 classifies the vulnerability as high severity. The EPSS score of less than 1% indicates that actual exploitation is currently unlikely, and the issue is not listed in CISA\u2019s KEV catalog. The attack vector is limited to authenticated users, meaning the attacker only needs to obtain or already possess legitimate account credentials. Once authenticated, they can exploit the flaw to execute SQL commands, leading to potential data exfiltration or unauthorized data modification."}}}}, "created": "2025-12-04T18:07:14.870437+00:00", "updated": "2026-04-27T22:45:15.501146+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}