{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-14313", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "state": "PUBLISHED", "assignerShortName": "WPScan", "dateReserved": "2025-12-09T08:23:20.853Z", "datePublished": "2025-12-30T06:00:04.941Z", "dateUpdated": "2026-04-02T12:39:54.522Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2026-04-02T12:39:54.522Z"}, "title": "Advance WP Query Search Filter <= 1.0.10 - Reflected XSS via taxo_ajax", "problemTypes": [{"descriptions": [{"description": "CWE-79 Cross-Site Scripting (XSS)", "lang": "en", "type": "CWE"}]}], "affected": [{"vendor": "Unknown", "product": "Advance WP Query Search Filter", "versions": [{"status": "affected", "versionType": "semver", "version": "0", "lessThanOrEqual": "1.0.10"}], "defaultStatus": "unknown"}], "descriptions": [{"lang": "en", "value": "The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin"}], "references": [{"url": "https://wpscan.com/vulnerability/5ebcdb32-da82-4129-8538-40d1b03a1108/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "credits": [{"lang": "en", "value": "Yevgen Goncharuk", "type": "finder"}, {"lang": "en", "value": "WPScan", "type": "coordinator"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "WPScan CVE Generator"}}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-12-30T15:59:27.362127Z", "id": "CVE-2025-14313", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-30T15:59:50.222Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-14313", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-12-30T15:59:27.362127Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-30T15:59:41.461Z"}}], "cna": {"title": "Advance WP Query Search Filter <= 1.0.10 - Reflected XSS via taxo_ajax", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Yevgen Goncharuk"}, {"lang": "en", "type": "coordinator", "value": "WPScan"}], "affected": [{"vendor": "Unknown", "product": "Advance WP Query Search Filter", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.0.10"}], "defaultStatus": "unknown"}], "references": [{"url": "https://wpscan.com/vulnerability/5ebcdb32-da82-4129-8538-40d1b03a1108/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "x_generator": {"engine": "WPScan CVE Generator"}, "descriptions": [{"lang": "en", "value": "The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-79 Cross-Site Scripting (XSS)"}]}], "providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2026-04-02T12:39:54.522Z"}}}, "cveMetadata": {"cveId": "CVE-2025-14313", "state": "PUBLISHED", "dateUpdated": "2026-04-02T12:39:54.522Z", "dateReserved": "2025-12-09T08:23:20.853Z", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "datePublished": "2025-12-30T06:00:04.941Z", "assignerShortName": "WPScan"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin"}], "id": "CVE-2025-14313", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-12-30T06:15:40.800", "references": [{"source": "contact@wpscan.com", "url": "https://wpscan.com/vulnerability/5ebcdb32-da82-4129-8538-40d1b03a1108/"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Deferred"}

{}

{"analysis": {"en": {"generated_at": "2026-04-27T22:01:04.816788+00:00", "value": {"mitigation_remediation": ["Upgrade the plugin to a version that includes the XSS fix (use any release newer than 1.0.10 that the vendor publishes).", "If an upgrade is not available, delete or deactivate the Advance WP Query Search Filter plugin to eliminate the attack surface.", "Configure a Content Security Policy that disallows inline scripts and restricts script sources to trusted domains, which mitigates XSS impact if the plugin remains installed."], "summary": {"action": "Patch", "impact": "Reflected Cross\u2011Site Scripting for privileged users"}, "threat_synthesis": {"affected_systems": "This vulnerability affects the plugin named Advance WP Query Search Filter with all releases through 1.0.10. Users running an older or unpatched instance of the plugin are susceptible, including those deployed on any WordPress site.", "description_and_impact": "The Advance WP Query Search Filter WordPress plugin, for versions up to 1.0.10, fails to sanitize and escape a parameter before displaying it back to the browser. This allows a reflected Cross\u2011Site Scripting (XSS) attack. An attacker could inject malicious scripts that are executed in the context of high\u2011privilege users such as site administrators, potentially compromising account credentials, defacing content, or redirecting to phishing sites. The weakness is a classic input neutralization failure (CWE\u201179).", "risk_and_exploitability": "The CVSS score of 6.1 indicates moderate severity. The EPSS score of less than 1\u202f% suggests a low likelihood of widespread exploitation at present, and the vulnerability is not listed in CISA\u2019s KEV catalog. The attack vector is inferred to be the AJAX endpoint \"taxo_ajax\", which can be accessed by authenticated users with admin rights; an attacker who tricks such a user into opening a crafted link could trigger the reflected XSS. The mitigate\u2011and\u2011patch approach, combined with user\u2011role restrictions, is required to reduce risk."}}}}, "created": "2026-01-05T10:22:27.988138+00:00", "updated": "2026-04-27T22:15:15.108453+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"], "weaknesses": ["CWE-79"]}