CVE-2025-31003

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Bogdan Bendziukov Squeeze squeeze allows Retrieve Embedded Sensitive Data.This issue affects Squeeze: from n/a through <= 1.6.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Affected products

Bogdan Bendziukov / Squeeze0 – 1.6

References

MISChttps://patchstack.com/database/Wordpress/Plugin/squeeze/vulnerability/wordpress-squeeze-plugin-1-6-full-path-disclosure-fpd-vulnerability?_s_id=cve