NerdPress Social Pug Sensitive Data Exposure Vulnerability

Vulnerability

A vulnerability allowing the exposure of sensitive system information to an unauthorized control sphere has been identified in the NerdPress Social Pug WordPress plugin, affecting versions through 1.35.1. This issue allows embedded sensitive data to be retrieved, potentially leading to the exploitation of other weaknesses within the system.

Impact

Exploitation of this vulnerability could allow a malicious actor to access sensitive information that is typically restricted from regular users, creating opportunities to exploit other vulnerabilities within the system.

Added: Sep 22, 2025, 9:21 PM

Updated: Sep 22, 2025, 11:30 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NerdPress Social Pug Sensitive Data Exposure Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating