Description
The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Author-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Published: 2026-01-06
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Data Compromise
Action: Patch
AI Analysis

Impact

The Page Expire Popup/Redirection for WordPress plugin contains a time‑based SQL injection in the 'id' attribute of its shortcode. Because the attribute value is inserted into an SQL statement without proper escaping or use of prepared statements, an attacker who owns an authenticated Author or higher role can append malicious SQL to the existing query. The attacker can therefore retrieve arbitrary database records, potentially exposing usernames, passwords, configuration data, and other sensitive information.

Affected Systems

Any WordPress installation that has the Page Expire Popup/Redirection plugin version 1.0 or earlier is affected. Site administrators should check the plugin version in the Plugins page and document whether the vulnerable version is active.

Risk and Exploitability

The CVSS score of 6.5 indicates a moderate severity with an exploit requiring authentication. The EPSS score of less than 1% signals that the vulnerability is unlikely to be actively exploited in the wild. Because the attack vector needs a legitimate author account, the risk is further mitigated by a strong password and limiting author privileges. The vulnerability is not currently listed in the CISA KEV catalog.

Generated by OpenCVE AI on April 20, 2026 at 21:19 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Page Expire Popup/Redirection plugin to a version that does not contain the vulnerability (any release newer than 1.0, if available).
  • If an update is not available, temporarily disable the plugin until a fix is released.
  • Restrict author, editor, and publisher roles from accessing the shortcode functionality or remove the ability to use the 'id' attribute.

Generated by OpenCVE AI on April 20, 2026 at 21:19 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 06 Jan 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 06 Jan 2026 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Vikasratudi
Vikasratudi page Expire Popup/redirection For Wordpress
Wordpress
Wordpress wordpress
Vendors & Products Vikasratudi
Vikasratudi page Expire Popup/redirection For Wordpress
Wordpress
Wordpress wordpress

Tue, 06 Jan 2026 03:30:00 +0000

Type Values Removed Values Added
Description The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute in all versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Author-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Title Page Expire Popup/Redirection for WordPress <= 1.0 - Authenticated (Author+) SQL Injection via 'id' Shortcode Attribute
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Vikasratudi Page Expire Popup/redirection For Wordpress
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:16:01.120Z

Reserved: 2025-12-05T19:52:57.279Z

Link: CVE-2025-14153

cve-icon Vulnrichment

Updated: 2026-01-06T15:11:26.392Z

cve-icon NVD

Status : Deferred

Published: 2026-01-06T04:15:53.220

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-14153

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T21:30:18Z

Weaknesses