{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-6783", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-06-27T12:22:17.891Z", "datePublished": "2025-07-04T01:44:04.943Z", "dateUpdated": "2026-04-08T17:01:51.764Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:01:51.764Z"}, "affected": [{"vendor": "optinlyhq", "product": "GoZen Forms", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.1.5", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The GoZen Forms plugin for WordPress is vulnerable to SQL Injection via the 'forms-id' parameter of the emdedSc() function in all versions up to, and including, 1.1.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}], "title": "GoZen Forms <= 1.1.5 - Unauthenticated SQL Injection via emdedSc()", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/784998a7-550d-4299-9995-af01e5ee1d21?source=cve"}, {"url": "https://wordpress.org/plugins/gozen-forms/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", "cweId": "CWE-89", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "baseScore": 7.5, "baseSeverity": "HIGH"}}], "credits": [{"lang": "en", "type": "finder", "value": "Jonas Benjamin Friedli"}], "timeline": [{"time": "2025-07-03T12:18:15.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-08T14:10:09.699960Z", "id": "CVE-2025-6783", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-08T14:10:15.626Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-6783", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-07-08T14:10:09.699960Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-08T14:10:12.249Z"}}], "cna": {"title": "GoZen Forms <= 1.1.5 - Unauthenticated SQL Injection via emdedSc()", "credits": [{"lang": "en", "type": "finder", "value": "Jonas Benjamin Friedli"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}}], "affected": [{"vendor": "optinlyhq", "product": "GoZen Forms", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.1.5"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-07-03T12:18:15.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/784998a7-550d-4299-9995-af01e5ee1d21?source=cve"}, {"url": "https://wordpress.org/plugins/gozen-forms/"}], "descriptions": [{"lang": "en", "value": "The GoZen Forms plugin for WordPress is vulnerable to SQL Injection via the 'forms-id' parameter of the emdedSc() function in all versions up to, and including, 1.1.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:01:51.764Z"}}}, "cveMetadata": {"cveId": "CVE-2025-6783", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:01:51.764Z", "dateReserved": "2025-06-27T12:22:17.891Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-07-04T01:44:04.943Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:optinlyhq:gozen_forms:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "DBEED8BD-C508-4E97-B393-6A151E444944", "versionEndIncluding": "1.1.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The GoZen Forms plugin for WordPress is vulnerable to SQL Injection via the 'forms-id' parameter of the emdedSc() function in all versions up to, and including, 1.1.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}, {"lang": "es", "value": "El complemento GoZen Forms para WordPress es vulnerable a la inyecci\u00f3n SQL a trav\u00e9s del par\u00e1metro 'forms-id' de la funci\u00f3n emdedSc() en todas las versiones hasta la 1.1.5 incluida, debido a un escape insuficiente del par\u00e1metro proporcionado por el usuario y a la falta de preparaci\u00f3n de la consulta SQL existente. Esto permite a atacantes no autenticados a\u00f1adir consultas SQL adicionales a las consultas ya existentes, que pueden utilizarse para extraer informaci\u00f3n confidencial de la base de datos."}], "id": "CVE-2025-6783", "lastModified": "2025-07-09T17:48:04.003", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security@wordfence.com", "type": "Primary"}]}, "published": "2025-07-04T03:15:23.077", "references": [{"source": "security@wordfence.com", "tags": ["Product"], "url": "https://wordpress.org/plugins/gozen-forms/"}, {"source": "security@wordfence.com", "tags": ["Third Party Advisory"], "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/784998a7-550d-4299-9995-af01e5ee1d21?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "security@wordfence.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T19:52:37.146049+00:00", "value": {"mitigation_remediation": ["Upgrade immediately to the latest GoZen Forms release (1.1.6 or newer) which corrects the SQL escaping flaw.", "If an upgrade is impossible, block access to the emdedSc() endpoint or permanently disable the plugin from the WordPress admin interface to prevent unauthenticated use.", "Deploy a Web Application Firewall rule or use a security middleware to filter and block suspicious SQL terms (e.g., SELECT, UNION, DROP) from incoming requests targeting the plugin's URLs."], "summary": {"action": "Immediate Patch", "impact": "Unauthenticated SQL injection enabling extraction of sensitive database contents"}, "threat_synthesis": {"affected_systems": "The flaw affects all installations of the GoZen Forms plugin version 1.1.5 or older, including the base release provided by optinlyhq. WordPress sites running these versions are at risk regardless of their overall configuration, as the plugin is loaded by default and the function is accessible to all visitors.", "description_and_impact": "The identified weakness lies in the GoZen Forms plugin for WordPress, where the emdedSc() function fails to escape the user supplied 'forms-id' parameter and does not prepare the surrounding SQL query. Because of this flaw an attacker can insert arbitrary SQL statements. The result is an unauthenticated SQL Injection that permits reading of database tables, potentially revealing user data, configuration, and other confidential information. The vulnerability directly compromises database confidentiality.", "risk_and_exploitability": "The CVSS score of 7.5 indicates a high severity for exploitation. The EPSS score is below 1\u202f%, showing a very low current probability of usage in the wild, and it is not listed in the CISA KEV catalog. Nonetheless, because the attack does not require any authentication, the potential impact is significant if an attacker can reach the endpoint. The expected attack vector is a crafted HTTP request containing the 'forms-id' parameter. Once the injection succeeds, the attacker gains read access to the database, which can have business\u2011critical consequences."}}}}, "created": "2025-07-13T21:47:34.783039+00:00", "updated": "2026-04-21T20:00:25.896881+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}