CVE-2025-14943
Unknown Unknown - Not Provided
Sensitive Information Exposure in Blog2Social Plugin via Authorization Flaw

Publication date: 2026-01-10

Last updated on: 2026-01-10

Assigner: Wordfence

Description
The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 8.7.2. This is due to a misconfigured authorization check on the 'getShipItemFullText' function which only verifies that a user has the 'read' capability (Subscriber-level) and a valid nonce, but fails to verify whether the user has permission to access the specific post being requested. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract data from password-protected, private, or draft posts.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-10
Last Modified
2026-01-10
Generated
2026-06-16
AI Q&A
2026-01-10
EPSS Evaluated
2026-06-14
NVD
CVE-2025-14943
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
blog2social blog2social to 8.7.2 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Blog2Social WordPress plugin up to version 8.7.2. It is caused by a misconfigured authorization check in the 'getShipItemFullText' function, which only verifies that a user has the 'read' capability and a valid nonce but does not check if the user has permission to access the specific post requested. As a result, authenticated users with Subscriber-level access or higher can extract data from password-protected, private, or draft posts that they should not normally be able to access. [1]

Impact Analysis

The vulnerability allows attackers with Subscriber-level access or above to access sensitive information from posts that are password-protected, private, or drafts. This could lead to unauthorized disclosure of confidential or sensitive content, potentially compromising privacy or business information. [1]

Detection Guidance

This vulnerability can be detected by monitoring AJAX requests to the WordPress plugin Blog2Social, specifically requests to the 'b2s_ship_item' AJAX action which invokes the 'getShipItemFullText' function. Detection involves checking for authenticated users with Subscriber-level access making AJAX calls that retrieve full text of password-protected, private, or draft posts. You can inspect HTTP logs or use tools like curl or wget to simulate such AJAX requests with valid nonces and Subscriber credentials to see if unauthorized post data is returned. Example command to test (replace URL, nonce, and cookies accordingly): curl -X POST -d "action=b2s_ship_item&b2s_security_nonce=VALID_NONCE&post_id=TARGET_POST_ID" -b "wordpress_logged_in=COOKIE_VALUE" https://yourwordpresssite.com/wp-admin/admin-ajax.php [1]

Mitigation Strategies

Immediate mitigation steps include updating the Blog2Social plugin to a version later than 8.7.2 where this vulnerability is fixed. If an update is not immediately possible, restrict Subscriber-level users from accessing the AJAX endpoints related to 'getShipItemFullText' by implementing additional authorization checks or temporarily disabling the plugin. Additionally, monitor and audit AJAX requests to detect suspicious access patterns. Applying strict capability checks beyond 'read' and verifying user permissions for specific posts can help mitigate exploitation. [1]

Compliance Impact

The provided resources do not contain information regarding the impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-14943. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart