CVE-2025-13085
BaseFortify
Publication date: 2025-11-19
Last updated on: 2025-11-19
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | siteseo | 1.3.2 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-285 | The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the SiteSEO β SEO Simplified plugin for WordPress (up to version 1.3.2) due to missing object-level authorization checks in the resolve_variables() AJAX handler. Authenticated users with the siteseo_manage capability, such as Author-level users granted SiteSEO access by an administrator, can exploit this flaw to read arbitrary post metadata from any post, page, attachment, or WooCommerce order they cannot normally edit. This occurs via the custom field variable resolution feature when legacy storage is enabled.
How can this vulnerability impact me? :
The vulnerability allows attackers with certain permissions to access sensitive post metadata they should not have access to. In WooCommerce installations, this can lead to exposure of sensitive customer billing information including names, email addresses, phone numbers, physical addresses, and payment methods, potentially leading to privacy breaches and misuse of customer data.