Adding CVE-2025-5287.yaml#12446
Conversation
Automated PR Review (Experimental)Thank you for your contribution! You can join our Discord server. It's a great place to connect with fellow contributors and stay updated with the latest developments. Thank you once again. Required Fixes
Other Suggestions
I am an AI Template bot, and the team will review the PR shortly. |
|
Also I would have set the sleep timer to be higher than 3 but I ran into a strange issue with the sleep-based SQLi. I tried to set the sleep timer to higher than 3, but something was going on with my Nuclei 3.4.5 client. 2 HTTP requests were getting sent and scans were taking 21 seconds to complete when the sleep timer was set to 5. Using sleep(3) the scan took 9 seconds. |
|
I updated the template ID to match the file name. I made sure that the tags have no spaces in them too |
Likes and Dislikes Wordpress Plugin <=1.0.0 Unauthenticated SQLi Vulnerability
Added CVE-2025-5287
Template Validation
I've validated this template locally?
Additional Details (leave it blank if not applicable)
Wordpress has pulled the plugin from their plugins site while they review it. The code can still be found on the plugin author's Github site linked above or on the Wordpress TracBrowser. Given that the last update to the plugin was 4 years ago, it is unlikely that it will receive a patch.
Additional References: