Demo Importer Plus

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

The Demo Importer Plus plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2.0.6. This is due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a valid WXR file. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

AI Analysis

Arbitrary file upload vulnerability in Demo Importer Plus plugin for WordPress due to insufficient file type validation, allowing authenticated attackers to upload arbitrary files and potentially execute remote code.

Basic Information

ID CVE-2025-13066

Source Wordfence

Published Dec 5, 2025 at 03:28

Affected Product

Vendor kraftplugins

Product Demo Importer Plus

Version *

Affected Versions kraftplugins Demo Importer Plus *

CWE Classification

CWE-434

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor kraftplugins

Product Demo Importer Plus

Version 2.0.6 and below

References

{
    "lastseen": "",
    "description": "The Demo Importer Plus plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2.0.6. This is due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a valid WXR file. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.",
    "published": "2025-12-05T03:28:36.875Z",
    "modified": "2025-12-05T03:28:36.875Z",
    "type": "cve",
    "title": "Demo Importer Plus <= 2.0.6 - Authenticated (Author+) Arbitrary File Upload via WXR Upload Bypass",
    "source": "Wordfence",
    "references": "https://www.wordfence.com/threat-intel/vulnerabilities/id/7df0ea8a-5e2c-4f5e-a326-b92df37ffa3c?source=cve\nhttps://plugins.trac.wordpress.org/changeset/3400301/demo-importer-plus/trunk/inc/importers",
    "id": "CVE-2025-13066",
    "bulletinFamily": "",
    "cwe": [
        "CWE-434"
    ],
    "cvelist": null,
    "sourceData": "kraftplugins Demo Importer Plus *",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Demo Importer Plus",
    "version": "*",
    "vendor": "kraftplugins",
    "ai_description": "Arbitrary file upload vulnerability in Demo Importer Plus plugin for WordPress due to insufficient file type validation, allowing authenticated attackers to upload arbitrary files and potentially execute remote code.",
    "ai_severity": "High",
    "ai_vendor": "kraftplugins",
    "ai_product": "Demo Importer Plus",
    "ai_version": "2.0.6 and below",
    "ai_score": 8.8
}

Demo Importer Plus <= 2.0.6 - Authenticated (Author+) Arbitrary File Upload via WXR Upload Bypass_CVE-2025-13066