Primary

Context

PixelYourSite WordPress Plugin Sensitive Information Exposure Vulnerability

Vulnerability

Patched

A vulnerability allowing sensitive information exposure has been identified in the PixelYourSite plugin for WordPress, affecting all versions through 11.1.5. This vulnerability arises from publicly accessible log files that can be viewed by unauthenticated attackers. The issue occurs when the 'Meta API logs' setting is enabled, which is off by default. The vulnerability was partially addressed in version 11.1.5 and fully resolved in version 11.1.5.1.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information contained in the exposed log files.

Remediation

Users can update to version 11.1.5.1 or a newer patched version to address this vulnerability.

Added: Dec 29, 2025, 7:24 PM

Updated: Dec 29, 2025, 7:24 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

2.5

exploitability

8.2

remediation

8.3

relevance

1.8

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

2.5

exploitability

8.2

remediation

8.3

relevance

1.8

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PixelYourSite WordPress Plugin Sensitive Information Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

PixelYourSite

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating