{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-5811", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-06-06T15:53:26.174Z", "datePublished": "2025-07-18T05:24:01.146Z", "dateUpdated": "2026-04-08T17:31:46.702Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:31:46.702Z"}, "affected": [{"vendor": "milanmk", "product": "Listly: Listicles For WordPress", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.7", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Init() function in all versions up to, and including, 2.7. This makes it possible for unauthenticated attackers to delete arbitrary transient values on the WordPress site."}], "title": "Listly: Listicles For WordPress <= 2.7 - Unauthenticated Arbitrary Transient Deletion", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee6749f5-1dd0-4687-9a86-64fd1161321b?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/listly/trunk/listly.php#L151"}, {"url": "https://wordpress.org/plugins/listly/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "ch4r0n"}], "timeline": [{"time": "2025-07-17T00:00:00.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-18T14:00:14.459990Z", "id": "CVE-2025-5811", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-18T14:00:33.209Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-5811", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-07-18T14:00:14.459990Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-18T14:00:27.244Z"}}], "cna": {"title": "Listly: Listicles For WordPress <= 2.7 - Unauthenticated Arbitrary Transient Deletion", "credits": [{"lang": "en", "type": "finder", "value": "ch4r0n"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "milanmk", "product": "Listly: Listicles For WordPress", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "2.7"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-07-17T00:00:00.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee6749f5-1dd0-4687-9a86-64fd1161321b?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/listly/trunk/listly.php#L151"}, {"url": "https://wordpress.org/plugins/listly/"}], "descriptions": [{"lang": "en", "value": "The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Init() function in all versions up to, and including, 2.7. This makes it possible for unauthenticated attackers to delete arbitrary transient values on the WordPress site."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:31:46.702Z"}}}, "cveMetadata": {"cveId": "CVE-2025-5811", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:31:46.702Z", "dateReserved": "2025-06-06T15:53:26.174Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-07-18T05:24:01.146Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Init() function in all versions up to, and including, 2.7. This makes it possible for unauthenticated attackers to delete arbitrary transient values on the WordPress site."}, {"lang": "es", "value": "El complemento Listly: Listicles For WordPress para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una comprobaci\u00f3n de capacidad en la funci\u00f3n Init() en todas las versiones hasta la 2.7 incluida. Esto permite que atacantes no autenticados eliminen valores transitorios arbitrarios en el sitio de WordPress."}], "id": "CVE-2025-5811", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-07-18T06:15:26.523", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/listly/trunk/listly.php#L151"}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/listly/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee6749f5-1dd0-4687-9a86-64fd1161321b?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T22:11:27.530258+00:00", "value": {"mitigation_remediation": ["Upgrade the Listly plugin to the latest version, which restricts the Init() function to users with appropriate capabilities.", "If upgrading is not immediately possible, deactivate or uninstall the Listly plugin to remove the vulnerable code from your site.", "After patching or deactivation, backup your database and verify that transient values function correctly."], "summary": {"action": "Patch", "impact": "Unauthorized deletion of arbitrary transient data"}, "threat_synthesis": {"affected_systems": "This issue affects the Listly plugin developed by milanmk, specifically all releases up to and including version 2.7. WordPress site owners running these plugin versions are vulnerable until they upgrade past 2.7.", "description_and_impact": "The Listly: Listicles For WordPress plugin contains a missing capability check in its Init() function, allowing an unauthenticated user to execute code that deletes arbitrary transient values stored in the WordPress database. This missing authorization flaw (CWE-862) means any visitor could cause loss of cached or configuration data, potentially disrupting site functionality or user experience.", "risk_and_exploitability": "The CVSS score of 5.3 classifies the vulnerability as moderate, and the EPSS score of less than 1% indicates a very low probability of active exploitation at present. The vulnerability is not listed in the CISA KEV catalog, suggesting limited exploitation prevalence. Based on the description, it is inferred that an attacker can trigger the deletion through an unauthenticated HTTP request to the plugin's Init() endpoint, allowing a remote attacker to act from anywhere an exposed WordPress instance is reachable."}}}}, "created": "2026-04-20T22:15:06.197552+00:00", "updated": "2026-04-20T22:15:06.197594+00:00", "vendors": []}