CVE-2025-13920 | WP Directory Kit Plugin up to 1.4.9 on WordPress AJAX wdk_public_action information disclosure

Inserito da Angelo Barbosa | Gen 24, 2026 | CVE

A vulnerability, which was classified as problematic, was found in WP Directory Kit Plugin up to 1.4.9 on WordPress. Affected is the function wdk_public_action of the component AJAX Handler. The manipulation results in information disclosure.

This vulnerability is reported as CVE-2025-13920. The attack can be launched remotely. No exploit exists.

CVE-2025-13920 | WP Directory Kit Plugin up to 1.4.9 on WordPress AJAX wdk_public_action information disclosure

Post correlati

CVE-2024-38198 | Microsoft Windows up to Server 2022 23H2 Print Spooler data authenticity

CVE-2024-51716 | Gopi.R Twitter Real Time Search Scrolling Plugin up to 7.0 on WordPress cross site scripting

CVE-2024-3162 | Jeg Elementor Kit Plugin up to 2.6.3 on WordPress Testimonial cross site scripting

CVE-2024-51175 | H3C Switch H3C-S1526 S1526.cfg information disclosure