{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-4593", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-05-12T15:32:43.438Z", "datePublished": "2025-07-11T07:22:59.127Z", "dateUpdated": "2026-04-08T16:43:35.758Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:43:35.758Z"}, "affected": [{"vendor": "avimegladon", "product": "WP Register Profile With Shortcode", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "3.6.2", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The WP Register Profile With Shortcode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'rp_user_data' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data from user meta like hashed passwords, usernames, and more."}], "title": "WP Register Profile With Shortcode <= 3.6.2 - Authenticated (Contributor+) Sensitive Information Exposure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/2ae7f5e3-7312-4fee-962b-3aecd8432557?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3324309%40wp-register-profile-with-shortcode&new=3324309%40wp-register-profile-with-shortcode&sfp_email=&sfph_mail="}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor", "cweId": "CWE-200", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "baseScore": 6.5, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Kishan Vyas"}], "timeline": [{"time": "2025-07-10T00:00:00.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-11T16:54:29.405365Z", "id": "CVE-2025-4593", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-11T16:54:36.358Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-4593", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-07-11T16:54:29.405365Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-11T16:54:33.138Z"}}], "cna": {"title": "WP Register Profile With Shortcode <= 3.6.2 - Authenticated (Contributor+) Sensitive Information Exposure", "credits": [{"lang": "en", "type": "finder", "value": "Kishan Vyas"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}], "affected": [{"vendor": "avimegladon", "product": "WP Register Profile With Shortcode", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "3.6.2"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-07-10T00:00:00.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/2ae7f5e3-7312-4fee-962b-3aecd8432557?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3324309%40wp-register-profile-with-shortcode&new=3324309%40wp-register-profile-with-shortcode&sfp_email=&sfph_mail="}], "descriptions": [{"lang": "en", "value": "The WP Register Profile With Shortcode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'rp_user_data' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data from user meta like hashed passwords, usernames, and more."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:43:35.758Z"}}}, "cveMetadata": {"cveId": "CVE-2025-4593", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:43:35.758Z", "dateReserved": "2025-05-12T15:32:43.438Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-07-11T07:22:59.127Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The WP Register Profile With Shortcode plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.2 via the 'rp_user_data' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data from user meta like hashed passwords, usernames, and more."}, {"lang": "es", "value": "El complemento WP Register Profile With Shortcode para WordPress es vulnerable a la exposici\u00f3n de informaci\u00f3n confidencial en todas las versiones hasta la 3.6.2 incluida, a trav\u00e9s del shortcode 'rp_user_data'. Esto permite a atacantes autenticados, con acceso de colaborador o superior, extraer informaci\u00f3n confidencial de los metadatos del usuario, como contrase\u00f1as con hash, nombres de usuario, etc."}], "id": "CVE-2025-4593", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-07-11T08:15:23.157", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3324309%40wp-register-profile-with-shortcode&new=3324309%40wp-register-profile-with-shortcode&sfp_email=&sfph_mail="}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/2ae7f5e3-7312-4fee-962b-3aecd8432557?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T14:41:45.034954+00:00", "value": {"mitigation_remediation": ["Identify all WordPress installations that use WP Register Profile With Shortcode 3.6.2 or earlier.", "Upgrade the plugin to the latest release, which removes the rp_user_data shortcode flaw.", "If an upgrade cannot be performed immediately, limit or disable the rp_user_data shortcode for Contributor and higher roles, or deactivate the plugin for those users to prevent data exposure."], "summary": {"action": "Assess Impact", "impact": "Sensitive Information Exposure"}, "threat_synthesis": {"affected_systems": "The issue affects WordPress sites that have installed the WP Register Profile With Shortcode plugin from avimegladon and are running version 3.6.2 or older. Any site where users have Contributor or higher roles and where the shortcode is available can be impacted.", "description_and_impact": "The WP Register Profile With Shortcode plugin, version 3.6.2 and earlier, is susceptible to a sensitive information exposure flaw. When the rp_user_data shortcode is used, any authenticated user with Contributor privileges or higher can retrieve user meta, including hashed passwords, usernames, and other sensitive details. This vulnerability would compromise confidentiality, allowing attackers to gain detailed knowledge of site accounts.", "risk_and_exploitability": "The CVSS score of 6.5 reflects a moderate impact. With an EPSS score below 1 percent, the probability of exploitation is low, and the vulnerability is not listed in CISA\u2019s KEV catalog. It requires an authenticated user with at least Contributor access, so the attack vector is internal authenticated. Vulnerable sites must update the plugin or otherwise prevent Contributors from using the shortcode to mitigate the confidentiality risk."}}}}, "created": "2026-04-22T14:45:19.293991+00:00", "updated": "2026-04-22T14:45:19.294002+00:00", "vendors": []}