CVE-2025-39461
📋 TL;DR
This CVE describes a PHP Local File Inclusion vulnerability in the Docket Cache WordPress plugin. Attackers can include arbitrary local files on the server, potentially leading to sensitive information disclosure or code execution. All WordPress sites using Docket Cache versions up to 24.07.02 are affected.
💻 Affected Systems
- Docket Cache WordPress Plugin
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Full server compromise via remote code execution by including malicious PHP files, leading to complete system takeover, data exfiltration, or ransomware deployment.
Likely Case
Sensitive file disclosure (configuration files, database credentials, source code) and limited code execution within the web server context.
If Mitigated
Limited impact with proper file permissions and security controls, potentially only allowing read access to non-sensitive files.
🎯 Exploit Status
Exploitation requires knowledge of file paths but is straightforward once identified. Public proof-of-concept exists in security advisories.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 24.07.03 or later
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find Docket Cache and click 'Update Now'. 4. Verify version is 24.07.03 or higher.
🔧 Temporary Workarounds
Disable Docket Cache Plugin
allTemporarily disable the vulnerable plugin until patching is possible
wp plugin deactivate docket-cache
Restrict File Access
linuxImplement strict file permissions and disable PHP execution in upload directories
chmod 644 /path/to/wordpress/wp-content/plugins/docket-cache/*
find /path/to/wordpress/wp-content/uploads -name '*.php' -type f -delete
🧯 If You Can't Patch
- Implement web application firewall (WAF) rules to block file inclusion patterns
- Restrict web server permissions to minimal required directories
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel → Plugins → Docket Cache version. If version is 24.07.02 or lower, system is vulnerable.Check Version:
wp plugin get docket-cache --field=versionVerify Fix Applied:
Verify Docket Cache version is 24.07.03 or higher in WordPress admin panel.📡 Detection & Monitoring
Log Indicators:
- Unusual file access patterns in web server logs
- Requests containing '..' or file inclusion patterns targeting Docket Cache endpoints
Network Indicators:
- HTTP requests with suspicious file paths in parameters
- Unexpected file downloads from web server
SIEM Query:
source="web_server_logs" AND (uri="*docket-cache*" AND (param="*..*" OR param="*include*" OR param="*require*"))