{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-1528", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-02-20T23:18:57.748Z", "datePublished": "2025-03-14T04:22:32.521Z", "dateUpdated": "2026-04-08T16:50:06.331Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:50:06.331Z"}, "affected": [{"vendor": "Search & Filter", "product": "Search & Filter Pro", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.5.19", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Search & Filter Pro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_meta_values' function in all versions up to, and including, 2.5.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the values of arbitrary post meta."}], "title": "Search and filter pro <= 2.5.19 - Missing Authorization to Authenticated (Subscriber+) Post Meta Exposure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/47adb5fe-534f-48a9-81a3-883e1d2cda7f?source=cve"}, {"url": "https://searchandfilter.com/search-filter-2-5-20-security-release/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Tom Broucke"}], "timeline": [{"time": "2025-03-13T16:21:36.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-03-14T14:03:12.040292Z", "id": "CVE-2025-1528", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-14T14:10:46.412Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-1528", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-03-14T14:03:12.040292Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-14T14:10:28.803Z"}}], "cna": {"title": "Search and filter pro <= 2.5.19 - Missing Authorization to Authenticated (Subscriber+) Post Meta Exposure", "credits": [{"lang": "en", "type": "finder", "value": "Tom Broucke"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}}], "affected": [{"vendor": "Search & Filter", "product": "Search & Filter Pro", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "2.5.19"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-03-13T16:21:36.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/47adb5fe-534f-48a9-81a3-883e1d2cda7f?source=cve"}, {"url": "https://searchandfilter.com/search-filter-2-5-20-security-release/"}], "descriptions": [{"lang": "en", "value": "The Search & Filter Pro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_meta_values' function in all versions up to, and including, 2.5.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the values of arbitrary post meta."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:50:06.331Z"}}}, "cveMetadata": {"cveId": "CVE-2025-1528", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:50:06.331Z", "dateReserved": "2025-02-20T23:18:57.748Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-03-14T04:22:32.521Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Search & Filter Pro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_meta_values' function in all versions up to, and including, 2.5.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the values of arbitrary post meta."}, {"lang": "es", "value": "El complemento Search &amp; Filter Pro para WordPress es vulnerable al acceso no autorizado a los datos debido a la falta de comprobaci\u00f3n de la funci\u00f3n 'get_meta_values' en todas las versiones hasta la 2.5.19 incluida. Esto permite que atacantes autenticados, con acceso de suscriptor o superior, lean los valores de metadatos de entradas arbitrarias."}], "id": "CVE-2025-1528", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-03-14T05:15:42.170", "references": [{"source": "security@wordfence.com", "url": "https://searchandfilter.com/search-filter-2-5-20-security-release/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/47adb5fe-534f-48a9-81a3-883e1d2cda7f?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T21:57:01.487071+00:00", "value": {"mitigation_remediation": ["Update Search & Filter Pro to version 2.5.20 or later.", "Remove or deactivate any older versions of the plugin that remain on the site.", "Review and restrict Subscriber role capabilities to the minimum required for normal use."], "summary": {"action": "Apply patch", "impact": "Data exposure through unauthorized access to post meta"}, "threat_synthesis": {"affected_systems": "This flaw affects WordPress sites that have the Search & Filter Pro plugin installed in versions up to and including 2.5.19.", "description_and_impact": "The Search & Filter Pro plugin for WordPress contains a missing capability check in its get_meta_values function that allows authenticated users with Subscriber level access and above to read arbitrary post meta data. This introduces a data\u2011exposure vulnerability that could expose sensitive content stored as custom fields, compromising the confidentiality of site information.", "risk_and_exploitability": "The CVSS score of 4.3 indicates moderate severity, and the EPSS score of less than 1\u00a0% suggests a very low likelihood of exploitation at this time. The vulnerability is not listed in CISA\u2019s KEV catalog. An attacker must first authenticate as a user with Subscriber or higher capability and then trigger the vulnerable function, typically via a crafted request to the plugin\u2019s get_meta_values endpoint. Because the attack can be performed over the network by an authenticated account, it is limited to users that already have site access but can still expose hidden data."}}}}, "created": "2026-04-21T22:00:26.599495+00:00", "updated": "2026-04-21T22:00:26.599506+00:00", "vendors": []}