CVE-2025-12098 | Academy LMS Plugin up to 3.3.8 on WordPress Social Login enqueue_social_login_script information disclosure

Inserito da Angelo Barbosa | Nov 8, 2025 | CVE

A vulnerability identified as problematic has been detected in Academy LMS Plugin up to 3.3.8 on WordPress. Affected is the function enqueue_social_login_script of the component Social Login Handler. This manipulation causes information disclosure.

This vulnerability is tracked as CVE-2025-12098. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-12098 | Academy LMS Plugin up to 3.3.8 on WordPress Social Login enqueue_social_login_script information disclosure

Post correlati

CVE-2023-5400 | Honeywell Experion Server heap-based overflow

CVE-2024-25906 | Comments Like Dislike Plugin up to 1.2.1 on WordPress unknown vulnerability

CVE-2024-45764 | Dell Enterprise SONiC OS up to 4.1.5/4.2.1 missing critical step in authentication (dsa-2024-449)

CVE-2023-41612 | Victure PC420 1.1.39 Micro SD Card enabled_telnet.dat inadequate encryption