RestroPress-WordPress-Plugin-Sensitive-API-Key-amp-Token-Exposure-Vulnerability-Exploitation_021A7C40-40E4-5B2D-AC96-99297BA23047

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

📌 Overview CVE-2025-9209 is a critical information disclosure vulnerability in the RestroPress WordPress plugin versions 3.0.0 – 3.1.9.2. It allows an unauthenticated attacker to retrieve private API keys, public keys, and JWT tokens for all WordPress...

Visit Original Source

Basic Information

ID 021A7C40-40E4-5B2D-AC96-99297BA23047

Published May 30, 2026 at 05:37

Modified May 30, 2026 at 05:41

{
    "lastseen": "2026-05-30T05:44:59",
    "description": "\ud83d\udccc Overview CVE-2025-9209 is a critical information disclosure vulnerability in the RestroPress WordPress plugin versions 3.0.0 \u2013 3.1.9.2. It allows an unauthenticated attacker to retrieve private API keys, public keys, and JWT tokens for all WordPress...",
    "published": "2026-05-30T05:37:31",
    "modified": "2026-05-30T05:41:38",
    "type": "githubexploit",
    "title": "RestroPress-WordPress-Plugin-Sensitive-API-Key-amp-Token-Exposure-Vulnerability-Exploitation",
    "source": "",
    "references": "",
    "id": "021A7C40-40E4-5B2D-AC96-99297BA23047",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2025-9209"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/Dhananjayasj/RestroPress-WordPress-Plugin-Sensitive-API-Key-amp-Token-Exposure-Vulnerability-Exploitation",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply