GHSA-jrj5-pj64-4f42
GitHub Security Advisory
⚠ Unreviewed
HIGH
Has CVE
Advisory Details
The UsersWP WordPress plugin before 1.2.12 uses predictable filenames when an admin generates an export, which could allow unauthenticated attackers to download them and retrieve sensitive information such as IP, username, and email address
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: June 14, 2025 6:24 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.