CVE-2025-12536
BaseFortify
Publication date: 2025-11-13
Last updated on: 2025-11-13
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpres | sureforms_plugin | 1.13.1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-359 | The product does not properly prevent a person's private, personal information from being accessed by actors who either (1) are not explicitly authorized to access the information or (2) do not have the implicit consent of the person about whom the information is collected. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The SureForms plugin for WordPress has a vulnerability in versions up to 1.13.1 where the '_srfm_email_notification' post meta registration uses an 'auth_callback' parameter set to '__return_true'. This setting allows unauthenticated attackers to access sensitive metadata, including email notification configurations such as CRM/help desk addresses, CC/BCC recipients, and notification templates. This exposure can be exploited to extract sensitive information and potentially inject malicious data into downstream systems.
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized disclosure of sensitive information like email notification settings and recipient addresses. Attackers can use this information to target phishing attacks, spam, or inject malicious data into systems that process these notifications, potentially compromising downstream systems or workflows.