CVE-2025-8676
📋 TL;DR
The B Slider WordPress plugin exposes installed plugin information to authenticated users with subscriber-level access or higher. This vulnerability allows attackers to gather reconnaissance data about the WordPress installation, potentially identifying other vulnerable plugins for further exploitation.
💻 Affected Systems
- B Slider - Gutenberg Slider Block for WP WordPress plugin
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Attackers use exposed plugin information to identify and exploit other vulnerabilities in the WordPress ecosystem, leading to complete site compromise.
Likely Case
Attackers gather intelligence about installed plugins to plan targeted attacks against known vulnerabilities in those plugins.
If Mitigated
Limited information exposure that doesn't directly lead to compromise but reveals system configuration details.
🎯 Exploit Status
Requires authenticated access (subscriber or higher) and knowledge of the vulnerable endpoint
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Versions > 2.0.0
Vendor Advisory: https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3343487%40b-slider&new=3343487%40b-slider&sfp_email=&sfph_mail=
Restart Required: No
Instructions:
1. Log into WordPress admin panel
2. Navigate to Plugins → Installed Plugins
3. Find 'B Slider - Gutenberg Slider Block for WP'
4. Click 'Update Now' if available
5. If no update available, deactivate and delete the plugin
🔧 Temporary Workarounds
Restrict User Registration
allPrevent new user accounts from being created to limit attack surface
In WordPress Settings → General, uncheck 'Anyone can register'
Remove Vulnerable Plugin
WordPress CLITemporarily disable or remove the vulnerable plugin until patched
wp plugin deactivate b-slider
wp plugin delete b-slider
🧯 If You Can't Patch
- Implement strict access controls and monitor for suspicious user activity
- Use web application firewall to block requests to vulnerable endpoints
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin → Plugins → Installed Plugins for B Slider version ≤ 2.0.0Check Version:
wp plugin get b-slider --field=versionVerify Fix Applied:
Verify B Slider plugin version is > 2.0.0 in WordPress admin panel📡 Detection & Monitoring
Log Indicators:
- Unusual GET requests to admin-ajax.php or wp-admin endpoints from subscriber-level users
- Multiple plugin information queries from single user session
Network Indicators:
- HTTP requests containing 'action=get_active_plugins' parameter
- Repeated requests to plugin-specific admin endpoints
SIEM Query:
source="wordpress.log" AND (uri_path="/wp-admin/admin-ajax.php" OR uri_path CONTAINS "/wp-admin/") AND (query_string CONTAINS "get_active_plugins" OR user_agent CONTAINS "reconnaissance")🔗 References
- https://plugins.trac.wordpress.org/browser/b-slider/tags/1.1.30/adminMenu.php#L83
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3343487%40b-slider&new=3343487%40b-slider&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/c19b24ef-cf49-4a5c-a187-0f09ac53c337?source=cve
