CVE-2025-68561

Vulnerability

Overview

CVE-2025-68561 is an SQL injection vulnerability in the WordPress plugin AutomatorWP, affecting versions from n/a through 5.2.4. The root cause is improper neutralization of special elements used in an SQL command, allowing an attacker to inject malicious SQL queries via user-supplied input [1].

Exploitation

An attacker can exploit this vulnerability without authentication, as the plugin fails to sanitize input before constructing SQL statements. The attack vector is network-based, requiring no special privileges or user interaction. This makes it possible for remote attackers to execute arbitrary SQL commands against the underlying database [1].

Impact

Successful exploitation could allow a malicious actor to directly interact with the database, including but not limited to stealing sensitive information such as user credentials, personal data, or other stored content. The vulnerability is rated with a CVSS v3 score of 7.6 (High), reflecting the potential for significant data compromise [1].

Mitigation

The vendor has released version 5.2.5 which addresses the issue. Users are strongly advised to update immediately. For those unable to update, enabling auto-updates for vulnerable plugins is recommended. The vulnerability is known to be used in mass-exploit campaigns, underscoring the urgency of patching [1].