WordPress WP SecureSubmit Plugin Missing Authorization Vulnerability Allowing Sensitive Data Exposure

Vulnerability

A missing authorization vulnerability has been identified in the WP SecureSubmit WordPress plugin, specifically in versions through 1.5.16. This vulnerability allows unauthorized users to access sensitive information that is typically restricted, potentially leading to the exploitation of other system weaknesses.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive data, which could be misused to exploit additional vulnerabilities within the system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WordPress WP SecureSubmit Plugin Missing Authorization Vulnerability Allowing Sensitive Data Exposure

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating