CVE-2025-7711 - Vulnerability Details

- Classified Listing – Classified ads & Business Directory Plugin <= 5.0.3 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via Listing Description

Description

The The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.0.3. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute arbitrary shortcodes.

Published: 2025-11-17

Score: 5.4 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability allows an authenticated user with Subscriber-level access to inject and execute arbitrary shortcodes within listing descriptions. By supplying a crafted shortcode, the user triggers WordPress’s do_shortcode function without validating the content, which can lead to execution of server‑side code and compromise the website’s confidentiality, integrity, and availability.

Affected Systems

All installations of the Classified Listing – AI‑Powered Classified ads & Business Directory Plugin, version 5.0.3 or earlier, distributed by techlabpro1.

Risk and Exploitability

The CVSS base score of 5.4 indicates a medium severity. The EPSS score of less than 1% suggests a low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog. A likely attack vector requires the attacker to have a legitimate WordPress account with Subscriber or higher privileges; once authenticated, the attacker can submit a listing containing a malicious shortcode that bypasses validation and is processed by do_shortcode, giving the attacker the ability to run arbitrary PHP code on the server.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

techlabpro1

Classified Listing – AI-Powered Classified ads & Business Directory Plugin

unaffected

Version	Status	Constraints
`0`	affected	≤ 5.0.3

No data.

Vendor	Product	Confidence	Versions
Techlabpro1	Classified Listing Plugin	—	—
Wordpress	Wordpress	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the Classified Listing plugin to the latest version (5.0.4 or newer) that removes the vulnerable shortcode handling.
Review existing listing descriptions to ensure no legacy or malicious shortcodes remain, and remove or sanitize any found.
Implement role‑based content restrictions or use a security plugin that blocks arbitrary shortcode execution for Subscriber‑level users to prevent future exploitation.

Generated by OpenCVE AI on April 20, 2026 at 19:01 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0004.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://plugins.trac.wordpress.org/browser/classified-listing/tags/5.0.2/app/Controllers/Hooks/FilterHooks.php#L367
https://www.wordfence.com/threat-intel/vulnerabilities/id/d9b10db9-0c7c-4f13-9d98-6d407446cfb8?source=cve

History

Tue, 18 Nov 2025 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 18 Nov 2025 09:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Techlabpro1 Techlabpro1 classified Listing Plugin Wordpress Wordpress wordpress
Vendors & Products		Techlabpro1 Techlabpro1 classified Listing Plugin Wordpress Wordpress wordpress

Mon, 17 Nov 2025 22:45:00 +0000

Type	Values Removed	Values Added
Description		The The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.0.3. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute arbitrary shortcodes.
Title		Classified Listing – Classified ads & Business Directory Plugin <= 5.0.3 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via Listing Description
Weaknesses		CWE-94
References		https://plugins.trac.wordpress.org/browser/classified-listing/tags/5.0.2/app/Controllers/Hooks/FilterHooks.php#L367 https://www.wordfence.com/threat-intel/vulnerabilities/id/d9b10db9-0c7c-4f13-9d98-6d407446cfb8?source=cve
Metrics		cvssV3_1 `{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N'}`

Subscriptions

Techlabpro1 Classified Listing Plugin

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2025-11-17T22:27:44.762Z

Updated: 2026-04-08T17:27:12.418Z

Reserved: 2025-07-16T13:49:21.442Z

Link: CVE-2025-7711

Vulnrichment

Updated: 2025-11-18T16:36:08.244Z

NVD

Status : Deferred

Published: 2025-11-17T23:15:56.713

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-7711

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-20T19:15:15Z

Weaknesses

CWE-94

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object