CVE-2025-10575
📋 TL;DR
This SQL injection vulnerability in the WP jQuery Pager WordPress plugin allows authenticated attackers with Contributor-level access or higher to execute arbitrary SQL queries. Attackers can extract sensitive information from the database by manipulating the 'ids' shortcode attribute. All WordPress sites using vulnerable versions of this plugin are affected.
💻 Affected Systems
- WP jQuery Pager WordPress plugin
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Complete database compromise including extraction of user credentials, sensitive content, and potential privilege escalation leading to full site takeover.
Likely Case
Extraction of sensitive data like user emails, hashed passwords, private posts, and plugin/theme configuration data from the database.
If Mitigated
Limited impact if proper access controls restrict Contributor accounts and database permissions are minimized.
🎯 Exploit Status
Exploitation requires authenticated access and knowledge of WordPress shortcode usage. No public exploit code available at time of analysis.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Version after 1.4.0
Vendor Advisory: https://plugins.trac.wordpress.org/browser/wp-jquery-pdf-paged/trunk/wp-jquery-paged.php#L80
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'WP jQuery Pager' plugin. 4. Click 'Update Now' if update available. 5. If no update available, deactivate and delete plugin immediately.
🔧 Temporary Workarounds
Remove Contributor SQL Access
WordPressTemporarily restrict Contributor-level users from creating or editing posts containing shortcodes
🧯 If You Can't Patch
- Immediately deactivate and remove the WP jQuery Pager plugin from all WordPress installations
- Implement strict access controls to limit Contributor account creation and monitor existing Contributor activities
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel > Plugins > Installed Plugins for WP jQuery Pager version 1.4.0 or earlierCheck Version:
wp plugin list --name='wp-jquery-paged' --field=versionVerify Fix Applied:
Verify plugin version is higher than 1.4.0 or plugin is completely removed📡 Detection & Monitoring
Log Indicators:
- Unusual SQL queries in WordPress/database logs
- Multiple failed login attempts followed by Contributor account access
- Unusual shortcode usage in post content
Network Indicators:
- HTTP POST requests with SQL-like patterns in 'ids' parameter
- Unusual database query patterns from WordPress application
SIEM Query:
source="wordpress.log" AND "wp-jquery-paged" AND ("ids=" OR "shortcode") AND ("SELECT" OR "UNION" OR "INSERT")