What is CVE-2025-2940 — SSRF in Ninja Tables – Easy Data Table Builder?

CVE-2025-2940 is a Server-Side Request Forgery vulnerability affecting Ninja Tables versions 0.0.0–5.0.18, allowing attackers to make arbitrary web requests.

Am I affected by CVE-2025-2940 in Ninja Tables – Easy Data Table Builder?

You are affected if you are using Ninja Tables versions 0.0.0 through 5.0.18 on your WordPress website.

How do I fix CVE-2025-2940 in Ninja Tables – Easy Data Table Builder?

Upgrade the Ninja Tables plugin to version 5.0.19 or later to resolve the vulnerability. Consider WAF rules as a temporary workaround.

Is CVE-2025-2940 being actively exploited?

As of now, there is no evidence of active exploitation campaigns targeting CVE-2025-2940.

Where can I find the official Ninja Tables advisory for CVE-2025-2940?

Refer to the official Ninja Tables website and WordPress plugin repository for updates and advisories related to CVE-2025-2940.

CVE-2025-2940 — Vulnerability Details

NEXTGUARD

Escanear gratis

CVE-2025-2940 — Vulnerability Details | NextGuard

Pasos de Deteccióntraduciendo…

• wordpress / plugin:

grep -r 'args[url]' /var/www/html/wp-content/plugins/ninja-tables/*

• wordpress / plugin:

wp plugin list --status=all | grep 'ninja-tables'

• wordpress / plugin:

wp plugin update ninja-tables --version=5.0.19

• generic web:

curl -I 'http://your-wordpress-site.com/wp-admin/admin-ajax.php?action=ninja_tables_load_table&args[url]=http://internal-service.local'

Ninja Tables – Easy Data Table Builder <= 5.0.18 - Falsificación de Solicitud del Servidor No Autenticada (Server-Side Request Forgery)

Impacto y Escenarios de Ataquetraduciendo…

Contexto de Explotacióntraduciendo…

Quién Está en Riesgotraduciendo…

Pasos de Deteccióntraduciendo…

Cronología del Ataque

Inteligencia de Amenazas

Software Afectado

Clasificación de Debilidad (CWE)

Cronología

Mitigación y Workaroundstraduciendo…

Cómo corregirlo

Boletín de seguridad CVE

Preguntas frecuentestraduciendo…

What is CVE-2025-2940 — SSRF in Ninja Tables – Easy Data Table Builder?

Am I affected by CVE-2025-2940 in Ninja Tables – Easy Data Table Builder?

How do I fix CVE-2025-2940 in Ninja Tables – Easy Data Table Builder?

Is CVE-2025-2940 being actively exploited?

Where can I find the official Ninja Tables advisory for CVE-2025-2940?

Información del paquete

¿Tu proyecto está afectado?

Detecta esta CVE en tu proyecto