{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-5018", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-05-20T22:18:14.744Z", "datePublished": "2025-06-06T06:42:51.453Z", "dateUpdated": "2026-04-08T17:10:06.546Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:10:06.546Z"}, "affected": [{"vendor": "hivesupport", "product": "Hive Support | AI-Powered Help Desk, Live Chat and Chatbot", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.2.5", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Hive Support plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the hs_update_ai_chat_settings() and hive_lite_support_get_all_binbox() functions in all versions up to, and including, 1.2.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read and overwrite the site\u2019s OpenAI API key and inspection data or modify AI-chat prompts and behavior. This vulnerability is potentially a duplicate of CVE-2025-32208 or/and CVE-2025-32242."}], "title": "Hive Support <= 1.2.5 - Authenticated (Subscriber+) Missing Authorization via hs_update_ai_chat_settings and hive_lite_support_get_all_binbox", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/95c8722e-07c3-4728-8723-4d4a6188fe5e?source=cve"}, {"url": "https://wordpress.org/plugins/hive-support/#developers"}, {"url": "https://plugins.trac.wordpress.org/browser/hive-support/tags/1.2.4/backend/class-hive-support-ajax.php#L9"}, {"url": "https://plugins.trac.wordpress.org/changeset/3311984"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N", "baseScore": 7.1, "baseSeverity": "HIGH"}}], "credits": [{"lang": "en", "type": "finder", "value": "Vo Thi Ngoc Nhi"}], "timeline": [{"time": "2025-06-05T17:48:57.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-06-06T15:42:56.711587Z", "id": "CVE-2025-5018", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-06T16:09:10.713Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-5018", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-06-06T15:42:56.711587Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-06T15:42:58.430Z"}}], "cna": {"title": "Hive Support <= 1.2.5 - Authenticated (Subscriber+) Missing Authorization via hs_update_ai_chat_settings and hive_lite_support_get_all_binbox", "credits": [{"lang": "en", "type": "finder", "value": "Vo Thi Ngoc Nhi"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 7.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N"}}], "affected": [{"vendor": "hivesupport", "product": "Hive Support | AI-Powered Help Desk, Live Chat and Chatbot", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.2.5"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-06-05T17:48:57.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/95c8722e-07c3-4728-8723-4d4a6188fe5e?source=cve"}, {"url": "https://wordpress.org/plugins/hive-support/#developers"}, {"url": "https://plugins.trac.wordpress.org/browser/hive-support/tags/1.2.4/backend/class-hive-support-ajax.php#L9"}, {"url": "https://plugins.trac.wordpress.org/changeset/3311984"}], "descriptions": [{"lang": "en", "value": "The Hive Support plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the hs_update_ai_chat_settings() and hive_lite_support_get_all_binbox() functions in all versions up to, and including, 1.2.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read and overwrite the site\u2019s OpenAI API key and inspection data or modify AI-chat prompts and behavior. This vulnerability is potentially a duplicate of CVE-2025-32208 or/and CVE-2025-32242."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:10:06.546Z"}}}, "cveMetadata": {"cveId": "CVE-2025-5018", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:10:06.546Z", "dateReserved": "2025-05-20T22:18:14.744Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-06-06T06:42:51.453Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Hive Support plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the hs_update_ai_chat_settings() and hive_lite_support_get_all_binbox() functions in all versions up to, and including, 1.2.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read and overwrite the site\u2019s OpenAI API key and inspection data or modify AI-chat prompts and behavior. This vulnerability is potentially a duplicate of CVE-2025-32208 or/and CVE-2025-32242."}, {"lang": "es", "value": "El complemento Hive Support para WordPress es vulnerable al acceso y la modificaci\u00f3n no autorizados de datos debido a la falta de una comprobaci\u00f3n de capacidad en las funciones hs_update_ai_chat_settings() y hive_lite_support_get_all_binbox() en todas las versiones hasta la 1.2.4 incluida. Esto permite a atacantes autenticados, con acceso de suscriptor o superior, leer y sobrescribir la clave de API de OpenAI y los datos de inspecci\u00f3n del sitio, o modificar las indicaciones y el comportamiento del chat de IA. Esta vulnerabilidad podr\u00eda ser un duplicado de CVE-2025-32208 o CVE-2025-32242."}], "id": "CVE-2025-5018", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 4.2, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-06-06T07:15:27.970", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/hive-support/tags/1.2.4/backend/class-hive-support-ajax.php#L9"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3311984"}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/hive-support/#developers"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/95c8722e-07c3-4728-8723-4d4a6188fe5e?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T20:24:12.266213+00:00", "value": {"mitigation_remediation": ["Upgrade the Hive Support plugin to the latest version (>=1.2.6)", "If an upgrade cannot be performed immediately, rotate or delete the OpenAI API key to prevent its misuse", "Restrict the Subscriber role\u2019s capabilities or disable the affected AJAX endpoints until a patch is applied"], "summary": {"action": "Immediate Patch", "impact": "Unauthorized configuration changes and API key disclosure"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the Hive Support WordPress plugin, versions up to and including 1.2.5. All installations of this plugin on a WordPress site, regardless of thematic environment, are potentially impacted unless the plugin has been upgraded past v1.2.5.", "description_and_impact": "Missing capability checks in Hive Support plugin allow authenticated users with Subscriber-level access and above to read or overwrite the site\u2019s OpenAI API key, modify AI\u2011chat prompts, and alter inspection data. This can expose sensitive credentials and alter chatbot behavior, potentially leading to data exposure and unauthorized use of the OpenAI API.", "risk_and_exploitability": "The CVSS score of 7.1 indicates a moderate to high severity, while the EPSS score of <1% suggests a low but non\u2011zero likelihood of exploitation. The vulnerability is not listed in CISA\u2019s KEV catalog. Exploitation requires an authenticated user with Subscriber or higher permissions, likely via AJAX calls to the hs_update_ai_chat_settings and hive_lite_support_get_all_binbox endpoints. No remote code execution is reported, but the attacker can gain persistent access to the site\u2019s OpenAI credentials and alter chatbot behavior."}}}}, "created": "2026-04-21T20:30:27.400839+00:00", "updated": "2026-04-21T20:30:27.400848+00:00", "vendors": []}