CVE-2025-57937 | THREATINT

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in etruel WPeMatico RSS Feed Fetcher allows Retrieve Embedded Sensitive Data. This issue affects WPeMatico RSS Feed Fetcher: from n/a through 2.8.10.

PUBLISHED Reserved 2025-08-22 | Published 2025-09-22 | Updated 2025-09-23 | Assigner Patchstack

MEDIUM: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Problem types

CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere

Product status

Default status

unaffected

Any version

affected

Credits

Ananda Dhakal (Patchstack) finder

References

patchstack.com/...tive-data-exposure-vulnerability?_s_id=cve vdb-entry

cve.org (CVE-2025-57937)

nvd.nist.gov (CVE-2025-57937)

Download JSON