CVE-2025-2939

EPSS 0.46%
Veröffentlicht 03.06.2025 02:27:34
Zuletzt bearbeitet 10.07.2025 14:20:31
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Ninja Tables – Easy Data Table Builder <= 5.0.18 - Unauthenticated PHP Object Injection to Limited Remote Code Execution

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.0.18 via deserialization of untrusted input from the args[callback] parameter . This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain allows attackers to execute arbitrary functions, though it does not allow user supplied parameters only single functions can be called so the impact is limited.

Mögliche Gegenmaßnahme

Ninja Tables – Easy Data Table Builder: Update to version 5.0.19, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wpmanageninja ≫ Ninja Tables SwPlatformwordpress Version < 5.0.19

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Ninja Tables – Easy Data Table Builder

Version *-5.0.18

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.46%	0.365

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@wordfence.com	5.6	2.2	3.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-502 Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

https://www.wordfence.com/threat-intel/vulnerabilities/id/8e38553d-5dba-4c84-95f7-43420245c770?source=cve

Third Party Advisory

https://plugins.trac.wordpress.org/browser/ninja-tables/tags/5.0.18/vendor/wpfluent/framework/src/WPFluent/Http/Client.php#L399

Product

https://plugins.trac.wordpress.org/browser/ninja-tables/trunk/vendor/wpfluent/framework/src/WPFluent/Http/Client.php#L399

Product

https://plugins.trac.wordpress.org/browser/ninja-tables/tags/5.0.19/vendor/wpfluent/framework/src/WPFluent/Http/Client.php#L399

Product

https://www.wordfence.com/threat-intel/vulnerabilities/id/8e38553d-5dba-4c84-95f7-43420245c770

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-2939

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-2939

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-2939

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-2939