The WorkExaminer Professional server installation comes with an FTP server that is used to receive the client logs on TCP port 12304
Description
The WorkExaminer Professional server installation comes with an FTP server that is used to receive the client logs on TCP port 12304
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Executive Summary:
A high-severity vulnerability, identified as CVE-2025-10635, has been discovered in the "Find Me On" WordPress plugin. This flaw could allow an unauthenticated attacker to compromise the security of an affected website, potentially leading to unauthorized access, data theft, or full site takeover. Organizations using this plugin are strongly advised to take immediate action to mitigate this significant risk.
Vulnerability Details
CVE-ID: CVE-2025-10635
Affected Software: Find Me On WordPress plugin
Affected Versions: All versions up to and including 2.0
Vulnerability: The vulnerability is an unauthenticated stored Cross-Site Scripting (XSS) flaw within the "Find Me On" plugin. An attacker can inject a malicious script into a component of the plugin that is rendered on the website. When a privileged user, such as an administrator, views the compromised page, the malicious script executes within their browser, allowing the attacker to hijack their session, steal credentials, perform administrative actions on their behalf, or redirect users to malicious sites.
Business Impact
This vulnerability is rated as High severity with a CVSS score of 7.7. Successful exploitation could have a significant negative impact on the business. Potential consequences include the compromise of sensitive company or customer data, website defacement, and the distribution of malware to site visitors, leading to severe reputational damage and loss of customer trust. The organization could also face regulatory fines and significant costs associated with incident response and system recovery.
Remediation Plan
Immediate Action:
Proactive Monitoring:
Compensating Controls:
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of October 8, 2025, there is no known publicly available exploit code for this vulnerability. However, given the high severity and the popularity of the WordPress platform, it is highly probable that threat actors will develop and begin using exploits in the near future. Organizations should assume active targeting of this vulnerability is imminent.
Analyst Recommendation
Given the high-severity CVSS score of 7.7, we strongly recommend that all organizations using the affected "Find Me On" plugin prioritize remediation immediately. The risk of website compromise and data theft is significant. The recommended course of action is to apply the security update without delay. If the plugin is not critical, it should be removed entirely to eliminate the attack surface. Although this vulnerability is not currently on the CISA KEV list, its status could change if widespread exploitation is observed.