CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-30 09:09:31 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4e4e30233e70832d643d5c6ab6fbfa6f130b4bb1
CVEs-PoC/2025/CVE-2025-1322.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

1017 B
Raw Blame History

CVE-2025-1322

Description

The WP-Recall Registration, Profile, Commerce & More plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 16.26.10 via the 'feed' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to view data from password protected, private, or draft posts that they should not have access to.

POC

Reference

No PoCs from references.

Github

Reference in New Issue View Git Blame Copy Permalink