{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-12585", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-10-31T22:16:47.560Z", "datePublished": "2025-12-03T03:27:14.561Z", "dateUpdated": "2026-04-22T18:58:43.157Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:02:48.282Z"}, "affected": [{"vendor": "mxchat", "product": "MxChat \u2013 AI Chatbot & Content Generation for WordPress", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.5.5", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The MxChat \u2013 AI Chatbot for WordPress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.5 via upload filenames. This makes it possible for unauthenticated attackers to extract session values that can subsequently be used to access conversation data."}], "title": "MxChat \u2013 AI Chatbot for WordPress <= 2.5.5 - Unauthenticated Information Exposure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/7cf1a90d-6157-40e7-aed8-4d18bc22432d?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/mxchat-basic/trunk/includes/class-mxchat-integrator.php#L107"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3406402%40mxchat-basic&new=3406402%40mxchat-basic&sfp_email=&sfph_mail="}, {"url": "https://github.com/d0n601/CVE-2025-12585"}, {"url": "https://ryankozak.com/posts/cve-2025-12585"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor", "cweId": "CWE-200", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Ryan Kozak"}], "timeline": [{"time": "2025-10-31T22:33:59.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-12-02T14:25:33.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"references": [{"url": "https://ryankozak.com/posts/cve-2025-12585/", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-12-03T14:45:21.576030Z", "id": "CVE-2025-12585", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-22T18:58:43.157Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-12585", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-12-03T14:45:21.576030Z"}}}], "references": [{"url": "https://ryankozak.com/posts/cve-2025-12585/", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-03T14:45:37.939Z"}}], "cna": {"title": "MxChat \u2013 AI Chatbot for WordPress <= 2.5.5 - Unauthenticated Information Exposure", "credits": [{"lang": "en", "type": "finder", "value": "Ryan Kozak"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}}], "affected": [{"vendor": "mxchat", "product": "MxChat \u2013 AI Chatbot & Content Generation for WordPress", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "2.5.5"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-10-31T22:33:59.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-12-02T14:25:33.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/7cf1a90d-6157-40e7-aed8-4d18bc22432d?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/mxchat-basic/trunk/includes/class-mxchat-integrator.php#L107"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3406402%40mxchat-basic&new=3406402%40mxchat-basic&sfp_email=&sfph_mail="}, {"url": "https://github.com/d0n601/CVE-2025-12585"}, {"url": "https://ryankozak.com/posts/cve-2025-12585"}], "descriptions": [{"lang": "en", "value": "The MxChat \u2013 AI Chatbot for WordPress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.5 via upload filenames. This makes it possible for unauthenticated attackers to extract session values that can subsequently be used to access conversation data."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:02:48.282Z"}}}, "cveMetadata": {"cveId": "CVE-2025-12585", "state": "PUBLISHED", "dateUpdated": "2026-04-22T18:58:43.157Z", "dateReserved": "2025-10-31T22:16:47.560Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-12-03T03:27:14.561Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The MxChat \u2013 AI Chatbot for WordPress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.5 via upload filenames. This makes it possible for unauthenticated attackers to extract session values that can subsequently be used to access conversation data."}], "id": "CVE-2025-12585", "lastModified": "2026-04-22T20:16:31.220", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-12-03T04:15:59.650", "references": [{"source": "security@wordfence.com", "url": "https://github.com/d0n601/CVE-2025-12585"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/mxchat-basic/trunk/includes/class-mxchat-integrator.php#L107"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3406402%40mxchat-basic&new=3406402%40mxchat-basic&sfp_email=&sfph_mail="}, {"source": "security@wordfence.com", "url": "https://ryankozak.com/posts/cve-2025-12585"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/7cf1a90d-6157-40e7-aed8-4d18bc22432d?source=cve"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://ryankozak.com/posts/cve-2025-12585/"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T17:51:25.017517+00:00", "value": {"mitigation_remediation": ["Update the MxChat plugin to the latest version (2.6 or later) to eliminate the information exposure flaw.", "If an immediate update is not possible, disable the file upload feature of the plugin or restrict uploads to authenticated users only to prevent revealing session data.", "Remove or restrict public access to the plugin\u2019s temporary upload directories so that uploaded filenames cannot be inspected by unauthorized users."], "summary": {"action": "Update Plugin", "impact": "Information Disclosure"}, "threat_synthesis": {"affected_systems": "All installations of the MxChat \u2013 AI Chatbot & Content Generation for WordPress plugin with a version equal to or below 2.5.5 are affected.", "description_and_impact": "The MxChat \u2013 AI Chatbot for WordPress plugin contains a sensitive information exposure flaw that allows unauthenticated attackers to retrieve session values from uploaded filenames. These session values can then be used to access protected conversation data, effectively enabling unauthorized data access.", "risk_and_exploitability": "The CVSS score of 5.3 indicates moderate severity, and the EPSS score of less than 1% suggests a low likelihood of exploitation. The vulnerability is not listed in CISA\u2019s KEV catalog. Based on the description, the attack vector is likely unauthenticated, exploiting the plugin\u2019s handling of upload filenames to glean session data. Once obtained, the attacker could pass the session value to request conversation content, bypassing normal access controls."}}}}, "created": "2025-12-03T12:09:46.580693+00:00", "updated": "2026-04-21T18:00:11.716113+00:00", "vendors": ["mxchat", "mxchat$PRODUCT$ai_chatbot_for_wordpress", "wordpress", "wordpress$PRODUCT$wordpress"]}