CVE-2025-12398

6.1 MEDIUM

Cross-Site Scripting

📋 TL;DR

The Product Table for WooCommerce WordPress plugin contains a reflected cross-site scripting (XSS) vulnerability in the 'search_key' parameter. Unauthenticated attackers can inject malicious scripts that execute when users click specially crafted links, potentially stealing session cookies or redirecting users. All WordPress sites using this plugin up to version 5.0.8 are affected.

💻 Affected Systems

Products:

• Product Table for WooCommerce WordPress plugin

Versions: All versions up to and including 5.0.8

Operating Systems: Any OS running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: Requires WordPress with WooCommerce installed. The vulnerability is present in default plugin configuration.

⚠️ Manual Verification Required

This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.

Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).

🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.

Recommended Actions:

1. Review the CVE details at NVD
2. Check vendor security advisories for your specific version
3. Test if the vulnerability is exploitable in your environment
4. Consider updating to the latest version as a precaution

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers steal administrator session cookies, gain administrative access to WordPress, install backdoors, deface websites, or steal customer data from WooCommerce stores.

🟠

Likely Case

Attackers steal user session cookies, redirect users to phishing sites, or perform actions on behalf of authenticated users.

🟢

If Mitigated

Script execution is blocked by modern browser XSS protections, limiting impact to basic session hijacking attempts.

🌐 Internet-Facing: HIGH

🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires tricking users into clicking malicious links. No authentication required to trigger the vulnerability.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 5.0.9 or later

Vendor Advisory: https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3420662%40woo-product-table&new=3420662%40woo-product-table&sfp_email=&sfph_mail=

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find 'Product Table for WooCommerce'. 4. Click 'Update Now' if available. 5. Alternatively, download version 5.0.9+ from WordPress plugin repository and manually update.

🔧 Temporary Workarounds

Web Application Firewall (WAF) Rule

all

Block malicious search_key parameter values containing script tags or JavaScript

Content Security Policy (CSP)

all

Implement strict CSP headers to prevent inline script execution

🧯 If You Can't Patch

• Disable the Product Table for WooCommerce plugin immediately
• Implement strict input validation at the web server level for the search_key parameter

🔍 How to Verify

Check if Vulnerable:

Copy

Check WordPress admin → Plugins → Product Table for WooCommerce version. If version is 5.0.8 or lower, you are vulnerable.

Check Version:

Copy

wp plugin list --name='product-table-for-woocommerce' --field=version

Verify Fix Applied:

Copy

After updating, verify plugin version shows 5.0.9 or higher in WordPress admin panel.

📡 Detection & Monitoring

Log Indicators:

• HTTP requests containing 'search_key' parameter with script tags or JavaScript code
• Unusual referrer headers pointing to malicious domains

Network Indicators:

• GET requests with encoded script payloads in search_key parameter
• Outbound connections to suspicious domains after page load

SIEM Query:

Copy

web.url:*search_key=*<script* OR web.url:*search_key=*javascript:*

📊 Metadata

CVE ID: CVE-2025-12398

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.12% exploit probability (30.6th percentile)

Published: December 21, 2025

Last Updated: December 23, 2025

🔗 References

• https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3420662%40woo-product-table&new=3420662%40woo-product-table&sfp_email=&sfph_mail=
• https://www.wordfence.com/threat-intel/vulnerabilities/id/35790e70-6e96-4ffe-9d4e-828dd649e8c0?source=cve

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-12398, you might also want to check these:

CVE-2021-39199 10.0

CVE-2021-39199 is a critical cross-site scripting (XSS) vulnerability in the remark-html Node.js lib...

Same vulnerability type (CWE-79)

CVE-2021-32671 10.0

This vulnerability in Flarum forum software allows attackers to inject malicious HTML/JavaScript int...

Same vulnerability type (CWE-79)

CVE-2021-32798 10.0

CVE-2021-32798 is a critical vulnerability in Jupyter Notebook that allows malicious notebook files ...

Same vulnerability type (CWE-79)