{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-1063", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-02-05T17:42:57.217Z", "datePublished": "2025-02-25T06:58:31.877Z", "dateUpdated": "2026-04-08T17:30:16.994Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:30:16.994Z"}, "affected": [{"vendor": "techlabpro1", "product": "Classified Listing \u2013 AI-Powered Classified ads & Business Directory Plugin", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "4.0.4", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Classified Listing \u2013 Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.0.4 via the rtcl_taxonomy_settings_export function. This makes it possible for unauthenticated attackers to extract sensitive data including API keys and tokens."}], "title": "Classified Listing \u2013 Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings Exposure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/e701b771-59f2-4783-b0a1-bea4d6c3d245?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3241883/classified-listing"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor", "cweId": "CWE-200", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "wesley"}], "timeline": [{"time": "2025-02-05T00:00:00.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-02-24T00:00:00.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-02-25T14:32:32.605702Z", "id": "CVE-2025-1063", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-25T14:37:36.278Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-1063", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-02-25T14:32:32.605702Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-25T14:32:34.032Z"}}], "cna": {"title": "Classified Listing \u2013 Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings Exposure", "credits": [{"lang": "en", "type": "finder", "value": "wesley"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}}], "affected": [{"vendor": "techlabpro1", "product": "Classified Listing \u2013 AI-Powered Classified ads & Business Directory Plugin", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "4.0.4"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-02-05T00:00:00.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-02-24T00:00:00.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/e701b771-59f2-4783-b0a1-bea4d6c3d245?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3241883/classified-listing"}], "descriptions": [{"lang": "en", "value": "The Classified Listing \u2013 Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.0.4 via the rtcl_taxonomy_settings_export function. This makes it possible for unauthenticated attackers to extract sensitive data including API keys and tokens."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:30:16.994Z"}}}, "cveMetadata": {"cveId": "CVE-2025-1063", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:30:16.994Z", "dateReserved": "2025-02-05T17:42:57.217Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-02-25T06:58:31.877Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Classified Listing \u2013 Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.0.4 via the rtcl_taxonomy_settings_export function. This makes it possible for unauthenticated attackers to extract sensitive data including API keys and tokens."}], "id": "CVE-2025-1063", "lastModified": "2025-02-25T07:15:17.127", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Primary"}]}, "published": "2025-02-25T07:15:17.127", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3241883/classified-listing"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/e701b771-59f2-4783-b0a1-bea4d6c3d245?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "security@wordfence.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T23:48:44.918804+00:00", "value": {"mitigation_remediation": ["Upgrade the Classified Listing plugin to version 4.0.5 or later to remove the vulnerable export function.", "Revoke and regenerate any API keys or tokens that may have been exposed and update them in the WordPress configuration.", "Remove or restrict the rtcl_taxonomy_settings_export capability from user roles that do not require it, ensuring that only trusted administrators can invoke the function.", "Implement WAF or network level rules to block unauthenticated requests targeting the export endpoint and monitor logs for any such activity."], "summary": {"action": "Patch immediately", "impact": "Sensitive Information Exposure"}, "threat_synthesis": {"affected_systems": "All installations of the Classified Listing \u2013 AI\u2011Powered Classified ads & Business Directory Plugin from vendor techlabpro1, running any version up to and including 4.0.4, are affected. Any website that has not applied the latest update beyond 4.0.4 remains susceptible.", "description_and_impact": "The Classified Listing plugin for WordPress is vulnerable to Sensitive Information Exposure through the rtcl_taxonomy_settings_export function. Unauthenticated users can trigger this function and obtain sensitive data such as API keys and tokens, compromising the confidentiality of the site\u2019s integrations.", "risk_and_exploitability": "With a CVSS score of 5.3 and an EPSS score below 1\u202f%, the vulnerability is considered moderate but still exploitable. It is not listed in CISA\u2019s KEV catalog, indicating no widely known public exploits at this time. The likely attack vector is an unauthenticated HTTP request to the exposed export endpoint; an attacker need only identify the plugin\u2019s URL pattern and invoke the function to retrieve the data. The consequences include loss of confidential integration keys, which could allow further compromise of connected services."}}}}, "created": "2026-04-21T00:00:13.358253+00:00", "updated": "2026-04-21T00:00:13.358265+00:00", "vendors": []}