CVE-2025-64250
📋 TL;DR
This CVE describes an open redirect vulnerability in the Directorist WordPress plugin that allows attackers to redirect users to malicious websites. Attackers can craft URLs that appear legitimate but redirect victims to phishing sites or malware. All WordPress sites using Directorist versions up to and including 8.5.6 are affected.
💻 Affected Systems
- Directorist WordPress Plugin
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Users are redirected to convincing phishing sites that steal credentials, financial information, or install malware, leading to account compromise, data theft, or ransomware infection.
Likely Case
Attackers use the vulnerability in phishing campaigns to redirect users to fake login pages or malicious sites, potentially compromising individual accounts.
If Mitigated
With proper user education about suspicious URLs and browser security features, most users would recognize or be blocked from accessing malicious sites.
🎯 Exploit Status
Open redirect vulnerabilities are commonly exploited in phishing campaigns and require minimal technical skill to weaponize.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 8.5.7 or later
Vendor Advisory: https://patchstack.com/database/Wordpress/Plugin/directorist/vulnerability/wordpress-directorist-plugin-8-5-6-open-redirection-vulnerability?_s_id=cve
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find Directorist and click 'Update Now'. 4. Verify update to version 8.5.7 or higher.
🔧 Temporary Workarounds
Disable Directorist Plugin
allTemporarily disable the vulnerable plugin until patched.
wp plugin deactivate directorist
Web Application Firewall Rule
allBlock redirects to external domains from Directorist endpoints.
🧯 If You Can't Patch
- Implement strict Content Security Policy (CSP) headers to restrict redirect destinations
- Deploy web application firewall with open redirect protection rules
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel > Plugins > Directorist version. If version is 8.5.6 or lower, you are vulnerable.Check Version:
wp plugin get directorist --field=versionVerify Fix Applied:
After updating, verify Directorist version shows 8.5.7 or higher in WordPress plugins list.📡 Detection & Monitoring
Log Indicators:
- Unusual redirect patterns in web server logs
- Multiple requests to Directorist endpoints with external URL parameters
Network Indicators:
- HTTP 302/301 redirects from Directorist pages to external domains
- Suspicious referrer patterns
SIEM Query:
web.url.path:"/wp-content/plugins/directorist/*" AND web.status_code:302 AND NOT web.url.destination:contains("yourdomain.com")