{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-13812", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-11-30T19:30:05.271Z", "datePublished": "2026-01-06T07:22:12.783Z", "dateUpdated": "2026-04-08T17:15:00.410Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:15:00.410Z"}, "affected": [{"vendor": "rubengc", "product": "GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "7.6.1", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the gamipress_ajax_get_posts and gamipress_ajax_get_users functions in all versions up to, and including, 7.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enumerate users, including their email addresses and to retrieve titles of private posts."}], "title": "GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress <= 7.6.1 - Missing Authorization to Authenticated (Subscriber+) Information Exposure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/acfdd579-0be9-476b-90cd-07f417712691?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3430697/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Kenneth Dunn"}], "timeline": [{"time": "2025-11-19T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2026-01-05T18:53:15.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-06T14:32:45.357565Z", "id": "CVE-2025-13812", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-06T14:32:54.065Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-13812", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-06T14:32:45.357565Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-06T14:32:48.568Z"}}], "cna": {"title": "GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress <= 7.6.1 - Missing Authorization to Authenticated (Subscriber+) Information Exposure", "credits": [{"lang": "en", "type": "finder", "value": "Kenneth Dunn"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}}], "affected": [{"vendor": "rubengc", "product": "GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "7.6.1"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-11-19T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2026-01-05T18:53:15.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/acfdd579-0be9-476b-90cd-07f417712691?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3430697/"}], "descriptions": [{"lang": "en", "value": "The GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the gamipress_ajax_get_posts and gamipress_ajax_get_users functions in all versions up to, and including, 7.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enumerate users, including their email addresses and to retrieve titles of private posts."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-01-06T07:22:12.783Z"}}}, "cveMetadata": {"cveId": "CVE-2025-13812", "state": "PUBLISHED", "dateUpdated": "2026-01-06T14:32:54.065Z", "dateReserved": "2025-11-30T19:30:05.271Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2026-01-06T07:22:12.783Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The GamiPress \u2013 Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the gamipress_ajax_get_posts and gamipress_ajax_get_users functions in all versions up to, and including, 7.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enumerate users, including their email addresses and to retrieve titles of private posts."}, {"lang": "es", "value": "El plugin de WordPress GamiPress \u2013 Gamification para recompensar puntos, logros, insignias y rangos es vulnerable a acceso no autorizado a datos debido a una verificaci\u00f3n de capacidad faltante en las funciones gamipress_ajax_get_posts y gamipress_ajax_get_users en todas las versiones hasta la 7.6.1, inclusive. Esto permite que atacantes autenticados, con un nivel de acceso de Suscriptor o superior, enumeren usuarios, incluyendo sus direcciones de correo electr\u00f3nico, y recuperen t\u00edtulos de publicaciones privadas."}], "id": "CVE-2025-13812", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2026-01-06T08:15:51.707", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3430697/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/acfdd579-0be9-476b-90cd-07f417712691?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T16:50:18.160337+00:00", "value": {"mitigation_remediation": ["Update GamiPress to the latest version that includes the capability check fix.", "If an immediate update is not possible, remove or downgrade the Subscriber role\u2019s capabilities that allow access to user data.", "Add a firewall rule to block unauthenticated requests to the gamipress_ajax_get_posts and gamipress_ajax_get_users endpoints.", "Consider disabling or uninstalling GamiPress if gamification functionality is not required."], "summary": {"action": "Apply Update", "impact": "Information Exposure"}, "threat_synthesis": {"affected_systems": "The vulnerability impacts all installations of the GamiPress plugin version 7.6.1 and earlier when running within a WordPress environment. Any site that has the plugin activated and has not yet upgraded beyond 7.6.1 is affected.", "description_and_impact": "An unauthorized data exposure flaw was discovered in the WordPress GamiPress plugin. The plugin's gamipress_ajax_get_posts and gamipress_ajax_get_users AJAX callbacks lack a required capability check, allowing an authenticated user with a Subscriber role or higher to retrieve sensitive information. An attacker can enumerate all registered users, obtain their email addresses, and view the titles of private posts, thereby exposing non\u2011public data.", "risk_and_exploitability": "The CVSS score of 4.3 denotes moderate severity, while the EPSS score of less than 1% indicates a low likelihood of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Attackers need only possess valid credentials for a user role with Subscriber privileges or higher, then they can simply send AJAX requests to the exposed endpoints to obtain user lists and private post titles. No additional privileges are required beyond the authenticated session, making the threat vector accessible to any authenticated user on the site."}}}}, "created": "2026-01-06T14:15:45.827222+00:00", "updated": "2026-04-21T17:00:12.309624+00:00", "vendors": ["gamipress", "gamipress$PRODUCT$gamipress", "wordpress", "wordpress$PRODUCT$wordpress"]}