weDevs WP Project Manager Sensitive Data Exposure Vulnerability

Vulnerability

A vulnerability allowing sensitive data exposure has been identified in the weDevs WP Project Manager plugin, affecting versions through 2.6.25. This vulnerability arises from the use of hard-coded credentials, which could allow unauthorized retrieval of embedded sensitive data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information, which is typically restricted from regular users. Such data exposure could be leveraged to exploit other vulnerabilities within the system.

Added: Sep 22, 2025, 8:45 PM

Updated: Sep 22, 2025, 10:55 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

weDevs WP Project Manager Sensitive Data Exposure Vulnerability

Vulnerability

Impact

Affected Products

weDevs WP Project Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating