CVE-2025-14388 | PhastPress Plugin up to 3.7 on WordPress wp-config.php getExtensionForURL information disclosure

Uncategorized
Yanac

A vulnerability classified as problematic has been found in PhastPress Plugin up to 3.7 on WordPress. This impacts the function getExtensionForURL of the file wp-config.php. This manipulation causes information disclosure.

The identification of this vulnerability is CVE-2025-14388. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More