Description
The WP Editor plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 1.2.9.1. This makes it possible for authenticated attackers, with Administrator-level access and above, to read arbitrary files on the affected site's server which may reveal sensitive information.
Published: 2025-04-17
Score: 4.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary File Read via Directory Traversal
Action: Apply Patch
AI Analysis

Impact

The WP Editor plugin contains a directory traversal flaw (CWE‑22) that permits an authenticated attacker with Administrator privileges or higher to read any file on the server. This capability could expose sensitive configuration, credentials, or user data, thereby compromising confidentiality of the victim site. The vulnerability is limited to plugin code and does not allow arbitrary code execution.

Affected Systems

The flaw affects the WP Editor plugin for WordPress developed by Benjamin Rojas. Versions up to and including 1.2.9.1 are vulnerable. No other products or versions are listed as impacted.

Risk and Exploitability

The CVSS score of 4.9 indicates moderate severity, and the EPSS score of less than 1% suggests a low likelihood of exploitation in the wild. The vulnerability is not catalogued in the CISA KEV list. An attacker must be able to authenticate as an administrator to exploit the issue, which limits the scope to sites with elevated user roles. When the necessary privileges are present, the attacker can read arbitrary files on the server.

Generated by OpenCVE AI on April 21, 2026 at 21:18 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the WP Editor plugin to the latest version that contains the fix for version 1.2.9.1 and above.
  • If an update is not immediately available, temporarily disable the WP Editor plugin until a patched version is released.
  • Review and restrict WordPress administrator accounts: remove unnecessary admin privileges and enforce the principle of least privilege.

Generated by OpenCVE AI on April 21, 2026 at 21:18 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-11514 The WP Editor plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 1.2.9.1. This makes it possible for authenticated attackers, with Administrator-level access and above, to read arbitrary files on the affected site's server which may reveal sensitive information.
History

Wed, 09 Jul 2025 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Benjaminrojas
Benjaminrojas wp Editor
CPEs cpe:2.3:a:benjaminrojas:wp_editor:*:*:*:*:*:wordpress:*:*
Vendors & Products Benjaminrojas
Benjaminrojas wp Editor

Thu, 17 Apr 2025 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 17 Apr 2025 05:30:00 +0000

Type Values Removed Values Added
Description The WP Editor plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 1.2.9.1. This makes it possible for authenticated attackers, with Administrator-level access and above, to read arbitrary files on the affected site's server which may reveal sensitive information.
Title WP Editor <= 1.2.9.1 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Read
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 4.9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Benjaminrojas Wp Editor
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:49:45.110Z

Reserved: 2025-04-04T17:16:43.214Z

Link: CVE-2025-3295

cve-icon Vulnrichment

Updated: 2025-04-17T19:12:50.587Z

cve-icon NVD

Status : Analyzed

Published: 2025-04-17T06:15:44.257

Modified: 2025-07-09T20:16:23.417

Link: CVE-2025-3295

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T21:30:45Z

Weaknesses