CVE-2025-0969 - Vulnerability Details

- Brizy – Page Builder <= 2.7.16 - Authenticated (Contributor+) Sensitive Information Exposure via get_users Function

Description

The Brizy – Page Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.16 via the get_users() function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including email addresses and hashed passwords of administrators.

Published: 2025-12-13

Score: 6.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability resides in the Brizy – Page Builder plugin’s use of the get_users() function, which allows an attacker with Contributor‑level access or higher to retrieve email addresses and hashed passwords of administrators. This flaw is a classic example of CWE‑359: Exposure of Sensitive Information. The primary consequence is the compromise of confidential data, specifically user credentials that can be leveraged for further attacks such as credential stuffing or phishing.

Affected Systems

WordPress sites running the Brizy – Page Builder plugin version 2.7.16 or older are impacted. The plugin is distributed by themefuse.com. No specific sub‑versions beyond 2.7.16 have been confirmed as secure; all earlier versions inherit the flaw.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate severity, but the EPSS score of less than 1% suggests this issue is not widely exploited in the wild as of now. The vulnerability is not listed in the CISA KEV catalog. The attack requires authenticated access at the Contributor level or higher, making the exploit experience more limited to legitimate users of the site. However, once authenticated, the attacker can read sensitive user data, potentially escalating privileges or compromising other accounts.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

themefusecom

Brizy – Page Builder

unaffected

Version	Status	Constraints
`0`	affected	≤ 2.7.16

No data.

Vendor	Product	Confidence	Versions
Brizy	Brizy	—	—
Brizy	Brizy-page Builder	—	—
Wordpress	Wordpress	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the Brizy – Page Builder plugin to the latest supported version (2.7.17 or newer).
If an immediate upgrade is not feasible, revoke Contributor and higher roles from affected users until the plugin can be updated, or enforce stricter role permissions so that get_users() cannot be called by those roles.
Disable the Brizy – Page Builder plugin on sites that remain vulnerable until the update is applied.

Generated by OpenCVE AI on April 22, 2026 at 13:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00055.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://plugins.trac.wordpress.org/browser/brizy/trunk/editor/api.php#L961
https://plugins.trac.wordpress.org/changeset/3392844
https://wordpress.org/plugins/brizy/#developers
https://www.wordfence.com/threat-intel/vulnerabilities/id/5987ef13-15d6-4ecf-894c-f22c8726402b?source=cve

History

Mon, 15 Dec 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sun, 14 Dec 2025 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Brizy Brizy brizy Brizy brizy-page Builder Wordpress Wordpress wordpress
Vendors & Products		Brizy Brizy brizy Brizy brizy-page Builder Wordpress Wordpress wordpress

Sat, 13 Dec 2025 08:30:00 +0000

Type	Values Removed	Values Added
Description		The Brizy – Page Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.16 via the get_users() function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including email addresses and hashed passwords of administrators.
Title		Brizy – Page Builder <= 2.7.16 - Authenticated (Contributor+) Sensitive Information Exposure via get_users Function
Weaknesses		CWE-359
References		https://plugins.trac.wordpress.org/browser/brizy/trunk/editor/api.php#L961 https://plugins.trac.wordpress.org/changeset/3392844 https://wordpress.org/plugins/brizy/#developers https://www.wordfence.com/threat-intel/vulnerabilities/id/5987ef13-15d6-4ecf-894c-f22c8726402b?source=cve
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}`

Subscriptions

Brizy Brizy Brizy-page Builder

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2025-12-13T08:21:13.768Z

Updated: 2026-04-08T16:54:50.850Z

Reserved: 2025-02-02T01:30:03.441Z

Link: CVE-2025-0969

Vulnrichment

Updated: 2025-12-15T15:42:54.956Z

NVD

Status : Deferred

Published: 2025-12-13T16:16:44.517

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-0969

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-22T14:00:18Z

Weaknesses

CWE-359

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object