CVE-2025-13359 is a SQL Injection vulnerability classified under CWE-89 found in the 'Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI' WordPress plugin, versions up to and including 3.40.1. The vulnerability arises from improper neutralization of special elements in SQL commands within the getTermsForAjax function. Specifically, user-supplied parameters are not properly escaped or prepared before being incorporated into SQL queries, enabling authenticated users with contributor-level privileges or higher to inject additional SQL commands. Since contributors have metabox access to taxonomies by default, they can exploit this flaw to perform time-based blind SQL Injection attacks, extracting sensitive data from the underlying database. The attack vector is remote over the network, requires low attack complexity, and does not require user interaction. The vulnerability impacts confidentiality by allowing unauthorized data disclosure but does not affect data integrity or system availability. No patches or exploit code are currently publicly available, and no known active exploitation has been reported. The CVSS v3.1 base score is 6.5, reflecting medium severity with network attack vector, low complexity, and privileges required but no user interaction.

For European organizations, this vulnerability poses a significant risk to the confidentiality of sensitive data stored in WordPress databases, including potentially user information, content metadata, and configuration details. Since contributors can exploit this flaw, insider threats or compromised contributor accounts could lead to data leakage. Organizations relying on this plugin for content categorization and AI-assisted tagging may face exposure of proprietary or personal data, potentially violating GDPR and other data protection regulations. Although the vulnerability does not directly impact availability or integrity, the unauthorized disclosure of data can damage organizational reputation and lead to regulatory penalties. The risk is heightened for organizations with large editorial teams or those that grant contributor-level access broadly. Additionally, the lack of known exploits in the wild suggests a window of opportunity for proactive mitigation before attackers develop weaponized exploits.

European organizations should immediately audit their WordPress installations to identify the presence of the vulnerable 'Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI' plugin. Since no official patches are currently available, temporary mitigations include restricting contributor-level access to trusted users only and disabling metabox access for taxonomies if feasible. Implementing Web Application Firewall (WAF) rules to detect and block suspicious SQL injection patterns targeting the getTermsForAjax function can reduce risk. Monitoring database query logs for anomalous or time-based delays may help detect exploitation attempts. Organizations should also follow the plugin vendor’s updates closely for forthcoming patches and apply them promptly. Additionally, enforcing strong authentication and monitoring contributor account activities can limit the potential for abuse. Finally, consider isolating WordPress database access with least privilege principles to minimize data exposure if exploitation occurs.