CVE-2025-39589
MEDIUMWPDeveloper Essential Addons for Elementor <6.1.9 - Info Disclosure
Title source: llmDescription
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-for-elementor-lite allows Retrieve Embedded Sensitive Data.This issue affects Essential Addons for Elementor: from n/a through <= 6.1.9.
References (2)
Scores
CVSS v3
4.3
EPSS
0.0020
EPSS Percentile
42.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-497
Status
published
Products (2)
WPDeveloper/Essential Addons for Elementor
< 6.1.9
wpdeveloper/essential_addons_for_elementor
< 6.1.10
Published
Apr 16, 2025
Tracked Since
Feb 18, 2026