{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-5812", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-06-06T15:59:18.761Z", "datePublished": "2025-06-26T02:06:33.607Z", "dateUpdated": "2026-04-08T17:18:09.318Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:18:09.318Z"}, "affected": [{"vendor": "vgwort", "product": "VG WORT METIS", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenberg_save_post() function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update limited post settings."}], "title": "VG WORT METIS <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/b9edcbdc-5b01-4880-95ec-57d87ccbb472?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/vgw-metis/trunk/classes/admin.php#L422"}, {"url": "https://plugins.trac.wordpress.org/changeset/3334017/vgw-metis/trunk/classes/admin.php"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "ch4r0n"}], "timeline": [{"time": "2025-06-25T14:05:47.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-06-27T14:41:45.991889Z", "id": "CVE-2025-5812", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-27T14:52:29.457Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-5812", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-06-27T14:41:45.991889Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-27T14:41:48.455Z"}}], "cna": {"title": "VG WORT METIS <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update", "credits": [{"lang": "en", "type": "finder", "value": "ch4r0n"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "vgwort", "product": "VG WORT METIS", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "2.0.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-06-25T14:05:47.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/b9edcbdc-5b01-4880-95ec-57d87ccbb472?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/vgw-metis/trunk/classes/admin.php#L422"}, {"url": "https://plugins.trac.wordpress.org/changeset/3334017/vgw-metis/trunk/classes/admin.php"}], "descriptions": [{"lang": "en", "value": "The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenberg_save_post() function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update limited post settings."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:18:09.318Z"}}}, "cveMetadata": {"cveId": "CVE-2025-5812", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:18:09.318Z", "dateReserved": "2025-06-06T15:59:18.761Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-06-26T02:06:33.607Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenberg_save_post() function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update limited post settings."}, {"lang": "es", "value": "El complemento VG WORT METIS para WordPress es vulnerable a la modificaci\u00f3n no autorizada de datos debido a la falta de una comprobaci\u00f3n de capacidad en la funci\u00f3n gutenberg_save_post() en todas las versiones hasta la 2.0.0 incluida. Esto permite que atacantes autenticados, con acceso de suscriptor o superior, actualicen la configuraci\u00f3n limitada de las publicaciones."}], "id": "CVE-2025-5812", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-06-26T02:15:22.420", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/vgw-metis/trunk/classes/admin.php#L422"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3334017/vgw-metis/trunk/classes/admin.php"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/b9edcbdc-5b01-4880-95ec-57d87ccbb472?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T20:27:26.977680+00:00", "value": {"mitigation_remediation": ["Upgrade the VG WORT METIS plugin to a version newer than 2.0.0 to eliminate the missing capability check.", "If a newer version is not immediately available, manually add a capability check in the gutenberg_save_post() function (for example, verify that the current user can 'edit_posts') before allowing post settings to be updated.", "Review and adjust user role capabilities so that Subscriber accounts cannot use the Gutenberg editor or modify post settings unless explicitly permitted."], "summary": {"action": "Apply patch", "impact": "Unauthorized modification of post settings by authenticated users"}, "threat_synthesis": {"affected_systems": "Any WordPress installation that uses the VG WORT METIS plugin with version 2.0.0 or earlier is affected. Versions before 2.0.0 are confirmed vulnerable; newer releases contain a patch that removes this issue.", "description_and_impact": "The VG WORT METIS plugin for WordPress lacks a capability check in its gutenberg_save_post() function, allowing authenticated users with Subscriber-level privileges or higher to update limited post settings when saving via the Gutenberg editor. This results in unauthorized data modification, potentially altering post configuration without appropriate authorization. The weakness is an authorization flaw (CWE-862). The impact is confined to post settings, but it enables attackers to change content behavior or presentation without gaining higher-level access.", "risk_and_exploitability": "The CVSS score of 4.3 indicates low severity, and the EPSS score of less than 1% suggests a very low likelihood of exploitation. The vulnerability is not listed in CISA KEV. However, because the flaw requires only an authenticated Subscriber or higher user, any site with such accounts can potentially exploit the vulnerability. The risk remains low to medium due to the limited scope of the damage, but administrators should address it promptly."}}}}, "created": "2025-07-13T21:48:26.708934+00:00", "updated": "2026-04-20T20:30:16.073094+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}