{"id":3791,"date":"2025-07-31T09:48:36","date_gmt":"2025-07-31T09:48:36","guid":{"rendered":"https:\/\/certera.com\/blog\/?p=3791"},"modified":"2025-07-31T09:48:37","modified_gmt":"2025-07-31T09:48:37","slug":"rising-wordpress-plugin-vulnerabilities-in-2025","status":"publish","type":"post","link":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/","title":{"rendered":"Rising WordPress Plugin Vulnerabilities in 2025"},"content":{"rendered":"\n<p class=\"quote-section wp-block-paragraph\">WordPress plugins are continuing to increase the usefulness of more than 40% of the web, but they are also increasing the attack surface for bad actors. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>In 2025<\/strong>, we will witness several high-severity vulnerabilities in common plugins such as AI Engine, Forminator, and WP Meta SEO, collectively affecting hundreds of thousands of websites.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you are utilizing these plugins or are in the business of creating <a href=\"https:\/\/certera.com\/services\/wordpress-security\">WordPress-based solutions<\/a>, this is an important security alert.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-recent-wordpress-plugin-vulnerabilities\">Recent WordPress Plugin Vulnerabilities<\/h2>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><strong>Plugin Name<\/strong><\/td><td><strong>Active Installations<\/strong><\/td><td><strong>Severity (CVSS)<\/strong><\/td><td><strong>Type of Vulnerability<\/strong><\/td><td><strong>Patched Version<\/strong><\/td><\/tr><tr><td><strong>AI Engine<\/strong><\/td><td>100,000+<\/td><td>8.8<\/td><td>Authenticated File Upload<\/td><td>2.9.5<\/td><\/tr><tr><td><strong>Forminator<\/strong><\/td><td>400,000+<\/td><td>9.8<\/td><td>Unauthenticated File Upload<\/td><td>1.29.3<\/td><\/tr><tr><td><strong>WP Meta SEO<\/strong><\/td><td>20,000+<\/td><td>9.9<\/td><td>Unauthenticated SQL Injection<\/td><td>4.5.13<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-ai-engine-plugin-subscriber-level-file-upload-cvss-8-8\">AI Engine Plugin \u2013 Subscriber Level File Upload (CVSS 8.8)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The AI Engine plugin, which integrates AI models into WordPress sites, has now experienced its fifth vulnerability in 2025, four of which were experienced in July.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-technical-overview\"><a><\/a>Technical Overview:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Versions Affected: <\/strong>2.9.3, and 2.9.4<\/li>\n\n\n\n<li><strong>Attack Vector:<\/strong> REST API endpoint did not validate the file type<\/li>\n\n\n\n<li><strong>Risk:<\/strong> The attack allows subscriber-level users to upload any file, which could escalate to remote code execution<\/li>\n\n\n\n<li><strong>Fix in 2.9.5<\/strong>:<ul><li>Implemented strict validation for file types<\/li><\/ul><ul><li>Implemented sanitization of\u00a0 REST API inputs<\/li><\/ul>\n<ul class=\"wp-block-list\">\n<li>Implemented strict validation of URL schemes for audio transcription (this was SSRF fix)<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-security-concern\">Security Concern:<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The continuing vulnerabilities examined in this plugin indicate a more substantial problem with insecure APIs and the handling of files. While this vulnerability requires authentication, a subscriber-level account is easy to obtain, usually through fake registrations or social engineering.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-forminator-plugin-unauthenticated-arbitrary-file-upload-cvss-9-8\">Forminator Plugin &#8211; Unauthenticated Arbitrary File Upload (CVSS 9.8)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Forminator, a popular form builder by WPMU DEV, faced a critical zero-day vulnerability in its AJAX handling logic.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-technical-breakdown\"><a><\/a>Technical Breakdown:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Affected Versions:<\/strong> Up to 1.29.2<\/li>\n\n\n\n<li><strong>Attack Vector:<\/strong> The &#8216;<strong>forminator_addon_file_upload<\/strong>&#8216; AJAX action did not check for nonce or user capabilities to determine if a user should have access to the action.<\/li>\n\n\n\n<li><strong>Risk:<\/strong> This condition allowed any unauthenticated user to upload dangerous file types that could be executed (use a PHP shell).<\/li>\n\n\n\n<li><strong>Fix in 1.29.3<\/strong>:<ul><li>Added authentication checks<\/li><\/ul>\n<ul class=\"wp-block-list\">\n<li>Blocked unsupported MIME types<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-why-is-it-critical\">Why is it Critical?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">This vulnerability is so critical, as it allows for complete unauthenticated file upload &#8211; this is probably one of the most dangerous vulnerabilities to have historically in a WordPress plugin.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Any attacker can send a file to the system and have it uploaded to the site&#8217;s \/uploads folder that can then be executed from within the site, thus gaining full access to the entire site.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-wp-meta-seo-sql-injection-via-ajax-cvss-9-9\">WP Meta SEO &#8211; SQL Injection via AJAX (CVSS 9.9)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">WP Meta SEO is a WordPress plugin intended to streamline and simplify on-site SEO from the WordPress Admin interface, injecting a blind SQL injection flaw triggered without login.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-technical-breakdown-0\"><a><\/a>Technical Breakdown:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Affected Versions: <\/strong>Up to 4.5.12 (the latest version at time of writing)<\/li>\n\n\n\n<li><strong>Attack Vector:<\/strong> The &#8216;<strong>wpms_ajax_save_meta_data<\/strong>&#8216; AJAX action called the user&#8217;s unescaped $_POST\u00a0 data and created SQL logic against the values being sent, assuming they were safe.<\/li>\n\n\n\n<li><strong>Risk: <\/strong>Attackers could modify and manipulate the validity of the database queries, exfiltrate sensitive information, escalate privileges.<\/li>\n\n\n\n<li><strong>Patch for Version: 4.5.13:<\/strong><ul><li>All User Input is escaped and sanitized before passing to the database<\/li><\/ul>\n<ul class=\"wp-block-list\">\n<li>Prevent unauthenticated users from direct access to any admin-side Ajax operations.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-what-could-happen\">What Could Happen?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">This vulnerability allowed an attacker to execute arbitrary SQL queries, such as dumping admin passwords or modifying site settings, without any form of authentication.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-recommendations-for-site-owners-and-developers\">Recommendations for Site Owners and Developers<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-update-ai-engine-to-2-9-5\">Update AI Engine to 2.9.5<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Site owners using the <strong>AI Engine plugin need to update to version 2.9.5 without delay<\/strong>. This version included a critical fix for an arbitrary file upload vulnerability that permitted unauthenticated users to execute remote code.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Delaying this update leaves your site vulnerable to exploitation from active exploitation campaigns already seen in the wild.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-update-forminator-to-1-29-3\">Update Forminator to 1.29.3<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Users of Forminator should<strong> immediately upgrade to version 1.29.3<\/strong>, which fixes a high-severity vulnerability (CVSS 9.8) that allows unauthenticated remote code execution.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Forminator is a common form and site user interaction plugin, which means that if this exploit were taken advantage of, it could result in the exposure of sensitive information or an injection of unwanted malware within site content.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-update-wp-meta-seo-to-4-5-13\">Update WP Meta SEO to 4.5.13<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Admin users should <strong>upgrade WP Meta SEO to version 4.5.13<\/strong> as this version addresses a critical reflected XSS vulnerability.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If not patched, an attacker can get users to click on a malicious link, which executes a script in their browser. This could allow attackers to hijack sessions or start further injections of malware.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-check-and-limit-plugin-permissions-for-all-user-roles\">Check and Limit Plugin Permissions for all User Roles<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">As mentioned with regard to general user roles, it\u2019s also important to conduct an audit of permissions from all user roles, primarily subscriber and contributor.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We have recently seen multiple vulnerabilities, including those of AI Engine, exploited using only base-level access rights.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Users with any kind of plugin permissions apart from administrators and users you completely trust should have their plugin access, including the REST API, disabled wherever possible. This reduces the level of risk you may face from exploited plugins.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-makes-these-vulnerabilities-dangerous\"><a><\/a>What Makes These Vulnerabilities Dangerous?<\/h2>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><strong>Risk Factor<\/strong><\/td><td><strong>AI Engine<\/strong><\/td><td><strong>Forminator<\/strong><\/td><td><strong>WP Meta SEO<\/strong><\/td><\/tr><tr><td><strong>Requires Login<\/strong><\/td><td>Yes<\/td><td>No<\/td><td>No<\/td><\/tr><tr><td><strong>Allows Code Execution<\/strong><\/td><td>Likely<\/td><td>Yes<\/td><td>Indirect<\/td><\/tr><tr><td><strong>Public Exploit Exists<\/strong><\/td><td>Not Yet<\/td><td>Possibly<\/td><td>Possibly<\/td><\/tr><tr><td><strong>Attack Surface<\/strong><\/td><td>REST API<\/td><td>AJAX<\/td><td>AJAX<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-conclusion\">Conclusion<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Worried about your WordPress Site Security? <a href=\"https:\/\/certera.com\/sitelock\">SiteLock<\/a> is a comprehensive website security solution that helps detect, prevent, and respond to threats in real time. It provides automated vulnerability scanning, malware detection, DDoS protection, and a web application firewall (WAF) to an important level of protection for your WordPress environment.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>WordPress plugins are continuing to increase the usefulness of more than 40% of the web, but they are also increasing the attack surface for bad actors. In 2025, we will witness several high-severity vulnerabilities in common plugins such as AI Engine, Forminator, and WP Meta SEO, collectively affecting hundreds of thousands of websites. If you<span class=\"morelink d-block mt-3\"><a href=\"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/\">Read More<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":3793,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[32,20],"tags":[737,736,735],"class_list":["post-3791","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-vulnerability","category-wordpress-support-service","tag-post-smtp-plugin-vulnerability","tag-wordpress-ai-engine-plugin-vulnerability","tag-wordpress-plugin-vulnerabilities","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Rising WordPress Plugin Vulnerabilities in 2025: 100K+ Sites Affected<\/title>\n<meta name=\"description\" content=\"Browse here recent &amp; most affected WordPress Plugin Vulnerabilities such as AI Engine, Forminator, WP Meta SEO, and how to fix them.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Rising WordPress Plugin Vulnerabilities in 2025: 100K+ Sites Affected\" \/>\n<meta property=\"og:description\" content=\"Browse here recent &amp; most affected WordPress Plugin Vulnerabilities such as AI Engine, Forminator, WP Meta SEO, and how to fix them.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/\" \/>\n<meta property=\"og:site_name\" content=\"EncryptedFence by Certera - Web &amp; Cyber Security Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/certeraLLC\/\" \/>\n<meta property=\"article:published_time\" content=\"2025-07-31T09:48:36+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-07-31T09:48:37+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/07\/wordpress-plugin-vulnerabilities.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"960\" \/>\n\t<meta property=\"og:image:height\" content=\"620\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Janki Mehta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:site\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Janki Mehta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/\"},\"author\":{\"name\":\"Janki Mehta\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\"},\"headline\":\"Rising WordPress Plugin Vulnerabilities in 2025\",\"datePublished\":\"2025-07-31T09:48:36+00:00\",\"dateModified\":\"2025-07-31T09:48:37+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/\"},\"wordCount\":908,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/07\\\/wordpress-plugin-vulnerabilities.webp\",\"keywords\":[\"Post SMTP Plugin Vulnerability\",\"WordPress AI Engine Plugin Vulnerability\",\"WordPress Plugin Vulnerabilities\"],\"articleSection\":[\"Vulnerability\",\"WordPress Support Service\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#respond\"]}],\"copyrightYear\":\"2025\",\"copyrightHolder\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/\",\"name\":\"Rising WordPress Plugin Vulnerabilities in 2025: 100K+ Sites Affected\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/07\\\/wordpress-plugin-vulnerabilities.webp\",\"datePublished\":\"2025-07-31T09:48:36+00:00\",\"dateModified\":\"2025-07-31T09:48:37+00:00\",\"description\":\"Browse here recent & most affected WordPress Plugin Vulnerabilities such as AI Engine, Forminator, WP Meta SEO, and how to fix them.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#primaryimage\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/07\\\/wordpress-plugin-vulnerabilities.webp\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/07\\\/wordpress-plugin-vulnerabilities.webp\",\"width\":960,\"height\":620,\"caption\":\"Recent WordPress Plugin Vulnerabilities\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/rising-wordpress-plugin-vulnerabilities-in-2025\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/certera.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Rising WordPress Plugin Vulnerabilities in 2025\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"name\":\"EncryptedFence by Certera - Web & Cyber Security Blog\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"alternateName\":\"Certera's EncryptedFence Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/certera.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\",\"name\":\"Certera\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"caption\":\"Certera\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/certeraLLC\\\/\",\"https:\\\/\\\/x.com\\\/certera_llc\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/certera-llc\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\",\"name\":\"Janki Mehta\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"caption\":\"Janki Mehta\"},\"description\":\"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\\\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.\",\"sameAs\":[\"https:\\\/\\\/certerassl.com\\\/\"],\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/author\\\/certerabguser\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Rising WordPress Plugin Vulnerabilities in 2025: 100K+ Sites Affected","description":"Browse here recent & most affected WordPress Plugin Vulnerabilities such as AI Engine, Forminator, WP Meta SEO, and how to fix them.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/","og_locale":"en_US","og_type":"article","og_title":"Rising WordPress Plugin Vulnerabilities in 2025: 100K+ Sites Affected","og_description":"Browse here recent & most affected WordPress Plugin Vulnerabilities such as AI Engine, Forminator, WP Meta SEO, and how to fix them.","og_url":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/","og_site_name":"EncryptedFence by Certera - Web &amp; Cyber Security Blog","article_publisher":"https:\/\/www.facebook.com\/certeraLLC\/","article_published_time":"2025-07-31T09:48:36+00:00","article_modified_time":"2025-07-31T09:48:37+00:00","og_image":[{"width":960,"height":620,"url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/07\/wordpress-plugin-vulnerabilities.webp","type":"image\/jpeg"}],"author":"Janki Mehta","twitter_card":"summary_large_image","twitter_creator":"@certera_llc","twitter_site":"@certera_llc","twitter_misc":{"Written by":"Janki Mehta","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#article","isPartOf":{"@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/"},"author":{"name":"Janki Mehta","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7"},"headline":"Rising WordPress Plugin Vulnerabilities in 2025","datePublished":"2025-07-31T09:48:36+00:00","dateModified":"2025-07-31T09:48:37+00:00","mainEntityOfPage":{"@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/"},"wordCount":908,"commentCount":0,"publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"image":{"@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/07\/wordpress-plugin-vulnerabilities.webp","keywords":["Post SMTP Plugin Vulnerability","WordPress AI Engine Plugin Vulnerability","WordPress Plugin Vulnerabilities"],"articleSection":["Vulnerability","WordPress Support Service"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#respond"]}],"copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/certera.com\/blog\/#organization"}},{"@type":"WebPage","@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/","url":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/","name":"Rising WordPress Plugin Vulnerabilities in 2025: 100K+ Sites Affected","isPartOf":{"@id":"https:\/\/certera.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#primaryimage"},"image":{"@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/07\/wordpress-plugin-vulnerabilities.webp","datePublished":"2025-07-31T09:48:36+00:00","dateModified":"2025-07-31T09:48:37+00:00","description":"Browse here recent & most affected WordPress Plugin Vulnerabilities such as AI Engine, Forminator, WP Meta SEO, and how to fix them.","breadcrumb":{"@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#primaryimage","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/07\/wordpress-plugin-vulnerabilities.webp","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/07\/wordpress-plugin-vulnerabilities.webp","width":960,"height":620,"caption":"Recent WordPress Plugin Vulnerabilities"},{"@type":"BreadcrumbList","@id":"https:\/\/certera.com\/blog\/rising-wordpress-plugin-vulnerabilities-in-2025\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/certera.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Rising WordPress Plugin Vulnerabilities in 2025"}]},{"@type":"WebSite","@id":"https:\/\/certera.com\/blog\/#website","url":"https:\/\/certera.com\/blog\/","name":"EncryptedFence by Certera - Web & Cyber Security Blog","description":"","publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"alternateName":"Certera's EncryptedFence Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/certera.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/certera.com\/blog\/#organization","name":"Certera","url":"https:\/\/certera.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","caption":"Certera"},"image":{"@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/certeraLLC\/","https:\/\/x.com\/certera_llc","https:\/\/www.linkedin.com\/company\/certera-llc\/"]},{"@type":"Person","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7","name":"Janki Mehta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","caption":"Janki Mehta"},"description":"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.","sameAs":["https:\/\/certerassl.com\/"],"url":"https:\/\/certera.com\/blog\/author\/certerabguser\/"}]}},"_links":{"self":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3791","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/comments?post=3791"}],"version-history":[{"count":2,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3791\/revisions"}],"predecessor-version":[{"id":3796,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3791\/revisions\/3796"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media\/3793"}],"wp:attachment":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media?parent=3791"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/categories?post=3791"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/tags?post=3791"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}