4 matches found
CVE-2025-1322
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 16.26.10 via the 'feed' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated...
CVE-2025-1322
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 16.26.10 via the 'feed' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated...
CVE-2025-1322
creationtimestamp| type| source ---|---|--- 2025-03-08 09:35:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6936 2025-03-08 12:35:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljujwnv4bq2x 2025-03-08 13:30:58+00:00| seen| https://t.me/cvedetector/19897 2025-03-08...
CVE-2025-1322
CVE-2025-1322 affects the WordPress plugin “WP-Recall – Registration, Profile, Commerce & More” up to version 16.26.10. The vulnerability is an information exposure through the feed shortcode caused by insufficient restrictions on which posts can be included, allowing (per NVD/Wordfence) data fro...