Site Checkup AI Troubleshooting with Wizard and Tips for Each...

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Description

The Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue plugin for WordPress is vulnerable to log file poisoning in all versions up to, and including, 1.47. This makes it possible for unauthenticated attackers to insert arbitrary content into log files, and potentially cause denial of service via disk space exhaustion.

Basic Information

ID CVE-2025-11627

Source Wordfence

Published Oct 30, 2025 at 05:28

Affected Product

Vendor sminozzi

Product Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue

Version *

Affected Versions sminozzi Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue *

CWE Classification

CWE-117

References

{
    "lastseen": "",
    "description": "The Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue plugin for WordPress is vulnerable to log file poisoning in all versions up to, and including, 1.47. This makes it possible for unauthenticated attackers to insert arbitrary content into log files, and potentially cause denial of service via disk space exhaustion.",
    "published": "2025-10-30T05:28:27.216Z",
    "modified": "2025-10-30T05:28:27.216Z",
    "type": "cve",
    "title": "Site Checkup AI Troubleshooting with Wizard and Tips for Each Issue <= 1.47 - Unauthenticated Log File Poisoning",
    "source": "Wordfence",
    "references": "https://www.wordfence.com/threat-intel/vulnerabilities/id/50251b17-58d7-4870-b825-a194312fb3e7?source=cve\nhttps://plugins.trac.wordpress.org/browser/site-checkup/tags/1.47/includes/catch-errors/class_bill_catch_errors.php#L80\nhttps://plugins.trac.wordpress.org/changeset/3380169/",
    "id": "CVE-2025-11627",
    "bulletinFamily": "",
    "cwe": [
        "CWE-117"
    ],
    "cvelist": null,
    "sourceData": "sminozzi Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue *",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue",
    "version": "*",
    "vendor": "sminozzi",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Site Checkup AI Troubleshooting with Wizard and Tips for Each Issue <= 1.47 - Unauthenticated Log File Poisoning_CVE-2025-11627