AI-Powered CVE Analysis for WordPress Plugins
We use AI to automate the differential analysis between vulnerable and patched plugin versions to understand and interpret the security issues. What we share here is research-grade proof of concept demonstrations that are then fed back into our endpoint firewall service.
WordPress Proof of Concepts
AI-assisted vulnerability analysis with PoC demonstration
2026-01-06
CVE-2025-14465: Sticky Action Buttons <= 1.1 – Cross-Site Request Forgery to Plugin Settings Update (sticky-action-buttons)
The Sticky Action Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This is due to missing or incorrect nonce validation on the sabs_options_page_form_submit() function. This makes it possible for unauthenticated attackers to update plugin settings via a forged request granted they can trick a site…
2026-01-06
CVE-2025-13848: STM Gallery 1.9 <= 0.9 – Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes (stm-gallery)
The STM Gallery 1.9 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'composicion' parameter in all versions up to, and including, 0.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute…
2026-01-06
CVE-2025-14626: QR Code for WooCommerce order emails, PDF invoices, packing slips <= 1.9.42 – Authenticated (Contributor+) Cross-Site Scripting via Shortcode Attributes (qr-code-tag-for-wc-from-goaskle-com)
The QR Code for WooCommerce order emails, PDF invoices, packing slips plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions up to, and including, 1.9.42 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and…
2026-01-06
CVE-2025-14057: Multi-column Tag Map <= 17.0.39 – Authenticated (Administrator+) Stored Cross-Site Scripting via 'mctm_css_conditional' Parameter (multi-column-tag-map)
The Multi-column Tag Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 17.0.39 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever…
2026-01-06
CVE-2025-14113: Viitor Button Shortcodes <= 3.0.0 – Authenticated (Contributor+) Stored Cross-Site Scripting via 'link' Shortcode Attribute (viitor-shortcodes)
The Viitor Button Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link' shortcode attribute in all versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will…
2026-01-06
CVE-2025-14145: Niche Hero | Beautifully-designed blocks in seconds <= 1.0.5 – Authenticated (Contributor+) Stored Cross-Site Scripting via 'spacing' Shortcode Attribute (niche-hero)
The Niche Hero | Beautifully-designed blocks in seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'spacing' parameter of the nh_row shortcode in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject…
2026-01-06
CVE-2025-14122: AD Sliding FAQ <= 2.4 – Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes (ad-sliding-faq)
The AD Sliding FAQ plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliding_faq' shortcode in all versions up to, and including, 2.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in…
2026-01-06
CVE-2025-15058: Responsive Pricing Table <= 5.1.12 – Authenticated (Contributor+) Stored Cross-Site Scripting via 'table_currency' (dk-pricr-responsive-pricing-table)
The Responsive Pricing Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'table_currency' parameter in all versions up to, and including, 5.1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute…
2026-01-06
CVE-2025-13418: Responsive Pricing Table <= 5.1.12 – Authenticated (Author+) Stored Cross-Site Scripting (dk-pricr-responsive-pricing-table)
The Responsive Pricing Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'plan_icons' parameter in all versions up to, and including, 5.1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute…
2026-01-06
CVE-2025-14796: My Album Gallery <= 1.0.4 – Authenticated (Author+) Stored Cross-Site Scripting via Image Title (my-album-gallery)
The My Album Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image titles in all versions up to, and including, 1.0.4. This is due to insufficient input sanitization and output escaping on the 'attachment->title' attribute. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts…
How Atomic Edge Works
Simple Setup. Powerful Security.
Atomic Edge acts as a security layer between your website & the internet — inspecting, filtering, and blocking malicious traffic before it ever reaches
your application.