CVE-2025-10310
📋 TL;DR
This SQL injection vulnerability in the Rich Snippet Site Report WordPress plugin allows unauthenticated attackers to execute arbitrary SQL queries against the database. All WordPress sites using this plugin up to version 2.0.0105 are affected, potentially exposing sensitive data like user credentials, site content, and configuration details.
💻 Affected Systems
- Rich Snippet Site Report WordPress plugin
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Complete database compromise leading to data theft, privilege escalation, site defacement, or full system takeover if database permissions allow file system access.
Likely Case
Extraction of sensitive WordPress data including user credentials, plugin configurations, and site content that could enable further attacks.
If Mitigated
Limited impact with proper database user permissions, but still potential for data leakage from accessible tables.
🎯 Exploit Status
Exploitable via CSRF, making it easier for attackers to trick authenticated users into triggering the vulnerability.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Version after 2.0.0105
Vendor Advisory: https://wordpress.org/plugins/easysnippet/
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'Rich Snippet Site Report' plugin. 4. Click 'Update Now' if update available. 5. If no update available, deactivate and delete the plugin immediately.
🔧 Temporary Workarounds
Temporary Parameter Filtering
WordPressAdd input validation for the 'last' parameter to block SQL injection attempts
Add to theme's functions.php or custom plugin: add_filter('query_vars', function($vars) { if(isset($_GET['last'])) { $_GET['last'] = sanitize_text_field($_GET['last']); } return $vars; });
🧯 If You Can't Patch
- Immediately deactivate and remove the Rich Snippet Site Report plugin from all WordPress installations
- Implement WAF rules to block SQL injection patterns targeting the 'last' parameter
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel > Plugins > Installed Plugins for 'Rich Snippet Site Report' version 2.0.0105 or earlierCheck Version:
wp plugin list --name='Rich Snippet Site Report' --field=versionVerify Fix Applied:
Verify plugin version is higher than 2.0.0105 or plugin is completely removed📡 Detection & Monitoring
Log Indicators:
- Unusual SQL queries in WordPress debug logs
- Multiple requests with SQL-like patterns in 'last' parameter
- Database error messages containing SQL syntax
Network Indicators:
- HTTP requests with SQL injection payloads in 'last' parameter
- Unusual traffic patterns to plugin-specific endpoints
SIEM Query:
source="wordpress.log" AND ("last=" AND ("UNION" OR "SELECT" OR "INSERT" OR "UPDATE" OR "DELETE" OR "--" OR "'" OR "OR 1=1"))