{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-2481", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-03-17T22:42:18.609Z", "datePublished": "2025-03-27T01:48:04.231Z", "dateUpdated": "2026-04-08T17:22:03.987Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:22:03.987Z"}, "affected": [{"vendor": "dman25560", "product": "MediaView", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.1.2", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The MediaView plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018id' parameter in all versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "title": "MediaView <= 1.1.2 - Reflected Cross-Site Scripting via id Parameter", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ca2d687f-0358-4642-849b-100bf40cbbf1?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/mediaview/tags/1.1.2/inc/forms/addMedia.inc.php#L48"}, {"url": "https://wordpress.org/plugins/mediaview/#developers"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3296857%40mediaview&new=3296857%40mediaview&sfp_email=&sfph_mail="}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "JohSka"}], "timeline": [{"time": "2025-03-26T12:57:09.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-03-27T13:45:59.247028Z", "id": "CVE-2025-2481", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-27T13:46:07.400Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-2481", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-03-27T13:45:59.247028Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-27T13:46:03.776Z"}}], "cna": {"title": "MediaView <= 1.1.2 - Reflected Cross-Site Scripting via id Parameter", "credits": [{"lang": "en", "type": "finder", "value": "Johannes Skamletz"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "dman25560", "product": "MediaView", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "1.1.2"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-03-26T12:57:09.000+00:00", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ca2d687f-0358-4642-849b-100bf40cbbf1?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/mediaview/tags/1.1.2/inc/forms/addMedia.inc.php#L48"}, {"url": "https://wordpress.org/plugins/mediaview/#developers"}], "descriptions": [{"lang": "en", "value": "The MediaView plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018id' parameter in all versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2025-03-27T01:48:04.231Z"}}}, "cveMetadata": {"cveId": "CVE-2025-2481", "state": "PUBLISHED", "dateUpdated": "2025-03-27T13:46:07.400Z", "dateReserved": "2025-03-17T22:42:18.609Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-03-27T01:48:04.231Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The MediaView plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018id' parameter in all versions up to, and including, 1.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}, {"lang": "es", "value": "El complemento MediaView para WordPress es vulnerable a Cross-Site Scripting reflejado a trav\u00e9s del par\u00e1metro 'id' en todas las versiones hasta la 1.1.2 incluida, debido a una depuraci\u00f3n de entrada y al escape de salida insuficiente. Esto permite a atacantes no autenticados inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar al usuario para que realice una acci\u00f3n, como hacer clic en un enlace."}], "id": "CVE-2025-2481", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-03-27T02:15:16.053", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/mediaview/tags/1.1.2/inc/forms/addMedia.inc.php#L48"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3296857%40mediaview&new=3296857%40mediaview&sfp_email=&sfph_mail="}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/mediaview/#developers"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ca2d687f-0358-4642-849b-100bf40cbbf1?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T23:27:10.119861+00:00", "value": {"mitigation_remediation": ["Upgrade the MediaView plugin to the latest available release, which removes the unsanitized id handling.", "If an upgrade is not currently possible, disable or remove the plugin entirely from the WordPress installation to eliminate the attack surface.", "As an interim measure, implement a web application firewall rule or content security policy that blocks or sanitizes scripts injected via the id parameter."], "summary": {"action": "Apply Patch", "impact": "Reflected Cross-site Scripting (XSS)"}, "threat_synthesis": {"affected_systems": "The affected software is the MediaView WordPress plugin, produced by vendor dman25560. All releases up to and including 1.1.2 contain the flaw. WordPress sites that have this plugin installed and have exposed URLs containing the id parameter are vulnerable.", "description_and_impact": "This vulnerability arises from insufficient input sanitization and output escaping of the 'id' parameter in the MediaView WordPress plugin. An unauthenticated attacker can inject arbitrary JavaScript that is reflected back to the victim when they click a specially crafted link. The injected script runs with the privileges of the victim\u2019s browser, enabling actions such as session hijacking, message theft, or site defacement. The weakness aligns with CWE-79 and offers no requirement for authentication or elevated privileges to execute.", "risk_and_exploitability": "The CVSS score of 6.1 classifies the flaw as moderately severe, and the EPSS score of less than 1% indicates a low probability of exploitation in the wild. Because the flaw is exploitable via a public URL and does not require credentials, attackers can target any visitor to a site running the vulnerable plugin. The vulnerability is not listed in the CISA Known Exploited Vulnerabilities catalog, suggesting no known active exploitation at present. Nevertheless, the potential for arbitrary script execution merits attention, as reflected XSS can lead to significant security breaches if an attacker convinces a user to click a malicious link."}}}}, "created": "2026-04-20T23:30:16.124797+00:00", "updated": "2026-04-20T23:30:16.124810+00:00", "vendors": []}