{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-7499", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-07-11T17:21:36.604Z", "datePublished": "2025-08-16T07:25:29.205Z", "dateUpdated": "2026-04-08T16:52:45.681Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:52:45.681Z"}, "affected": [{"vendor": "wpdevteam", "product": "BetterDocs \u2013 Knowledge Base Docs & FAQ Solution for Elementor & Block Editor", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "4.1.1", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The BetterDocs \u2013 Advanced AI-Driven Documentation, FAQ & Knowledge Base Tool for Elementor & Gutenberg with Encyclopedia, AI Support, Instant Answers plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_response function in all versions up to and including 4.1.1. This makes it possible for unauthenticated attackers to retrieve passwords for password-protected documents as well as the metadata of private and draft documents."}], "title": "BetterDocs <= 4.1.1 - Missing Authorization to Private And Password-Protected Posts Information Disclosure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5231b741-4d02-45b5-b2aa-0d9d3536a416?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/betterdocs/tags/4.1.0/includes/REST/DocCategories.php#L82"}, {"url": "https://plugins.trac.wordpress.org/changeset/3338384/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "xitsec"}], "timeline": [{"time": "2025-06-30T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2025-07-16T15:28:43.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-08-15T19:18:06.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-18T17:47:46.864263Z", "id": "CVE-2025-7499", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-18T17:50:29.014Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-7499", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-08-18T17:47:46.864263Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-18T17:50:09.880Z"}}], "cna": {"title": "BetterDocs <= 4.1.1 - Missing Authorization to Private And Password-Protected Posts Information Disclosure", "credits": [{"lang": "en", "type": "finder", "value": "xitsec"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}}], "affected": [{"vendor": "wpdevteam", "product": "BetterDocs \u2013 Knowledge Base Docs & FAQ Solution for Elementor & Block Editor", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "4.1.1"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-06-30T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2025-07-16T15:28:43.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-08-15T19:18:06.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5231b741-4d02-45b5-b2aa-0d9d3536a416?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/betterdocs/tags/4.1.0/includes/REST/DocCategories.php#L82"}, {"url": "https://plugins.trac.wordpress.org/changeset/3338384/"}], "descriptions": [{"lang": "en", "value": "The BetterDocs \u2013 Advanced AI-Driven Documentation, FAQ & Knowledge Base Tool for Elementor & Gutenberg with Encyclopedia, AI Support, Instant Answers plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_response function in all versions up to and including 4.1.1. This makes it possible for unauthenticated attackers to retrieve passwords for password-protected documents as well as the metadata of private and draft documents."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:52:45.681Z"}}}, "cveMetadata": {"cveId": "CVE-2025-7499", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:52:45.681Z", "dateReserved": "2025-07-11T17:21:36.604Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-08-16T07:25:29.205Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The BetterDocs \u2013 Advanced AI-Driven Documentation, FAQ & Knowledge Base Tool for Elementor & Gutenberg with Encyclopedia, AI Support, Instant Answers plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_response function in all versions up to and including 4.1.1. This makes it possible for unauthenticated attackers to retrieve passwords for password-protected documents as well as the metadata of private and draft documents."}, {"lang": "es", "value": "El complemento BetterDocs \u2013 Advanced AI-Driven Documentation, FAQ &amp; Knowledge Base Tool for Elementor &amp; Gutenberg with Encyclopedia, AI Support, Instant Answers para Wordpress es vulnerable al acceso no autorizado a los datos debido a la falta de una comprobaci\u00f3n de capacidad en la funci\u00f3n get_response en todas las versiones hasta la 4.1.1 incluida. Esto permite que atacantes no autenticados obtengan las contrase\u00f1as de documentos protegidos por contrase\u00f1a, as\u00ed como los metadatos de documentos privados y borradores."}], "id": "CVE-2025-7499", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-08-16T08:15:26.400", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/betterdocs/tags/4.1.0/includes/REST/DocCategories.php#L82"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3338384/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5231b741-4d02-45b5-b2aa-0d9d3536a416?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T00:55:17.843011+00:00", "value": {"mitigation_remediation": ["Upgrade the BetterDocs plugin to a version newer than 4.1.1 that includes the missing capability check (CWE\u2011862).", "Configure the WordPress REST API firewall or a security plugin to block unauthenticated access to the /betterdocs endpoint.", "Review and adjust user role capabilities so that only authorized users have permission to view private or password\u2011protected documents."], "summary": {"action": "Patch", "impact": "Information disclosure of passwords and metadata for private and password\u2011protected posts"}, "threat_synthesis": {"affected_systems": "WordPress installations that use the BetterDocs plugin version 4.1.1 or earlier are affected. The plugin is distributed by wpdevteam under the BetterDocs \u2013 Knowledge Base Docs & FAQ Solution for Elementor & Block Editor. No other products or vendors are listed.", "description_and_impact": "The BetterDocs plugin for WordPress contains a missing capability check in its get_response function, which allows unauthenticated users to retrieve the passwords of password\u2011protected documents as well as the metadata of private and draft documents. This flaw exposes confidential information that is normally restricted to authorized users.", "risk_and_exploitability": "The CVSS score of 5.3 indicates a moderate severity. The EPSS score is less than 1%, and the vulnerability is not listed in the CISA KEV catalog, indicating a low probability of exploitation in the wild. The likely attack vector is a network request to the plugin\u2019s REST endpoint that invokes get_response without verifying user capabilities. An unauthenticated attacker can send a legitimate HTTP request to this endpoint and receive the sensitive data in the response."}}}}, "created": "2026-04-22T01:00:04.364369+00:00", "updated": "2026-04-22T01:00:04.364381+00:00", "vendors": []}