Classified Listing WordPress Plugin Sensitive Information Exposure Vulnerability

A vulnerability allowing sensitive information exposure has been identified in the Classified Listing – Classified ads & Business Directory Plugin for WordPress, affecting all versions through 4.0.4. The issue arises in the rtcl_taxonomy_settings_export function, where unauthenticated attackers can access sensitive data such as API keys and tokens.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information, including API keys and tokens, which could be misused to compromise the security of the affected WordPress site or its integrations.

Remediation

Users are advised to update the Classified Listing WordPress plugin to version 4.0.5 or later.