Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/10/07 8:23 a.m.2 views

CVE-2025-10645 WP Reset <= 2.05 - Unauthenticated Sensitive Information Exposure via wf-licensing.log

The WP Reset plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.05 via the WFLicensing::log method when debugging is enabled default. This makes it possible for unauthenticated attackers to extract sensitive license key and site data...

5.3CVSS5.5AI score0.00296EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.19 views

PT-2025-40973

Name of the Vulnerable Software and Affected Versions WP Reset versions prior to 2.06 Description The WP Reset plugin for WordPress is susceptible to exposure of sensitive information in all versions up to and including 2.05. This occurs through the WF Licensing::log method when debugging is...

5.3CVSS5.9AI score0.00296EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2022/08/01 1:15 p.m.2 views

CVE-2022-2181

The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting...

6.1CVSS5.9AI score0.00569EPSS
Exploits2References2
OSV
OSV
added 2022/08/01 1:15 p.m.4 views

CVE-2022-2181

The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting...

6.1CVSS5.8AI score0.00569EPSS
Exploits2References1
Rows per page
Query Builder