Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit 6d6271cefae4 · 2025-12-02T06:32:28.000Z
GHSA-7h84-ffvq-9q78 GHSA-9x7j-2h58-mc3v GHSA-q93v-5jjx-7797 GHSA-vm64-rwh3-4fc9
diff --git a/advisories/unreviewed/2025/12/GHSA-7h84-ffvq-9q78/GHSA-7h84-ffvq-9q78.json b/advisories/unreviewed/2025/12/GHSA-7h84-ffvq-9q78/GHSA-7h84-ffvq-9q78.json
@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7h84-ffvq-9q78",
+  "modified": "2025-12-02T06:30:25Z",
+  "published": "2025-12-02T06:30:25Z",
+  "aliases": [
+    "CVE-2025-13606"
+  ],
+  "details": "The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.19. This is due to missing or incorrect nonce validation on the `parseData` function. This makes it possible for unauthenticated attackers to export sensitive information including user data, email addresses, password hashes, and WooCommerce data to an attacker-controlled file path on the server via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13606"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3405694"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3511e110-d091-447d-87c0-25d33900bc30?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-352"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-02T05:16:20Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/12/GHSA-9x7j-2h58-mc3v/GHSA-9x7j-2h58-mc3v.json b/advisories/unreviewed/2025/12/GHSA-9x7j-2h58-mc3v/GHSA-9x7j-2h58-mc3v.json
@@ -0,0 +1,29 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-9x7j-2h58-mc3v",
+  "modified": "2025-12-02T06:30:25Z",
+  "published": "2025-12-02T06:30:25Z",
+  "aliases": [
+    "CVE-2025-13001"
+  ],
+  "details": "The donation WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users, such as admin to perform SQL injection attacks",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13001"
+    },
+    {
+      "type": "WEB",
+      "url": "https://wpscan.com/vulnerability/4e7a8154-46bf-44c9-ad9a-273e99ae2104"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-02T06:15:45Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/12/GHSA-q93v-5jjx-7797/GHSA-q93v-5jjx-7797.json b/advisories/unreviewed/2025/12/GHSA-q93v-5jjx-7797/GHSA-q93v-5jjx-7797.json
@@ -0,0 +1,29 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-q93v-5jjx-7797",
+  "modified": "2025-12-02T06:30:25Z",
+  "published": "2025-12-02T06:30:25Z",
+  "aliases": [
+    "CVE-2025-13000"
+  ],
+  "details": "The db-access WordPress plugin through 0.8.7 does not have authorization in an AJAX action, allowing any authenticated users, such as subscriber to perform SQLI attacks",
+  "severity": [],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13000"
+    },
+    {
+      "type": "WEB",
+      "url": "https://wpscan.com/vulnerability/aec53f87-6500-4c8a-925a-146be61bbabf"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-02T06:15:45Z"
+  }
+}
diff --git a/advisories/unreviewed/2025/12/GHSA-vm64-rwh3-4fc9/GHSA-vm64-rwh3-4fc9.json b/advisories/unreviewed/2025/12/GHSA-vm64-rwh3-4fc9/GHSA-vm64-rwh3-4fc9.json
@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-vm64-rwh3-4fc9",
+  "modified": "2025-12-02T06:30:25Z",
+  "published": "2025-12-02T06:30:25Z",
+  "aliases": [
+    "CVE-2025-13387"
+  ],
+  "details": "The Kadence WooCommerce Email Designer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the customer name in all versions up to, and including, 1.5.17 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13387"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3399955/kadence-woocommerce-email-designer"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/1e0cf512-f676-4f47-abaa-5198998376b7?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-79"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2025-12-02T05:16:17Z"
+  }
+}
