CVE-2025-13595 in CIBELES AI Plugin
Summary
by MITRE • 11/26/2025
The CIBELES AI plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all versions up to, and including, 1.10.8. This makes it possible for unauthenticated attackers to download arbitrary GitHub repositories and overwrite plugin files on the affected site's server which may make remote code execution possible.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Analysis
by VulDB Data Team • 11/27/2025
The CVE-2025-13595 vulnerability affects the CIBELES AI plugin for WordPress, specifically targeting version 1.10.8 and earlier releases. This security flaw resides within the 'actualizador_git.php' file where the plugin fails to implement proper capability checks for file upload operations. The absence of authentication and authorization controls creates a critical pathway for malicious actors to exploit the system. The vulnerability enables unauthenticated attackers to leverage the plugin's functionality to download arbitrary GitHub repositories and subsequently overwrite existing plugin files on the target WordPress installation, fundamentally compromising the integrity of the affected system.
The technical exploitation of this vulnerability stems from the plugin's inadequate input validation and privilege management mechanisms. When an attacker accesses the vulnerable endpoint in 'actualizador_git.php', they can bypass the expected authentication requirements that should normally restrict file upload operations to authorized administrators. This missing capability check represents a direct violation of security principles and creates a dangerous attack surface where any internet-facing WordPress site running the affected plugin becomes vulnerable to remote compromise. The flaw operates at the application layer and can be classified under CWE-863, which addresses improper authorization scenarios where an actor can perform actions they should not be permitted to execute.
The operational impact of this vulnerability extends beyond simple file manipulation, as it creates potential for remote code execution within the WordPress environment. By overwriting plugin files with malicious code, attackers can establish persistent access points and potentially escalate privileges within the compromised system. The ability to download arbitrary GitHub repositories means that threat actors can inject malicious code directly into the plugin's codebase, effectively creating a backdoor that persists across plugin updates and system restarts. This vulnerability aligns with ATT&CK technique T1505.003, which covers the use of web shell deployment and command execution through compromised web applications.
Organizations affected by this vulnerability should immediately implement mitigations including disabling the problematic plugin functionality, applying the latest security patches from the vendor, and conducting thorough security audits of their WordPress installations. Network-based mitigations such as web application firewalls can help detect and block exploitation attempts, while monitoring for unusual file upload activities should be implemented. The vulnerability highlights the critical importance of proper access control implementation and demonstrates how a single missing capability check can create a complete compromise of the affected system. Regular security assessments and code reviews should be conducted to prevent similar issues in other plugin components and ensure comprehensive protection against unauthorized file operations.