CVE-2025-60109

Vulnerability

Description The LambertGroup - AllInOne - Content Slider WordPress plugin (all-in-one-contentSlider) versions up to and including 3.8 are vulnerable to blind SQL injection due to improper neutralization of special elements used in SQL commands [1]. This vulnerability resides in the plugin's handling of user-supplied input, which is directly incorporated into SQL queries without adequate sanitization.

Exploitation

Details An unauthenticated attacker can exploit this blind SQL injection by sending crafted requests to the vulnerable endpoint. No special privileges or network position is required beyond normal web access. The vulnerability can be triggered by manipulating input parameters that are passed to the database, enabling the attacker to infer database structure and content through boolean-based or time-based injection techniques.

Impact

Successful exploitation allows an attacker to retrieve sensitive information from the WordPress database, including usernames, password hashes, and other site data. This could lead to further compromise of the site, such as privilege escalation or complete takeover. The CVSS score of 8.5 indicates high severity.

Mitigation

The plugin vendor has been notified, and users are advised to update the plugin to a patched version as soon as it becomes available [1]. If no patch is released, immediate steps include disabling the plugin, implementing a web application firewall rule to block malicious SQL patterns, or consulting with a security professional.