Medium severity5.3NVD Advisory· Published Oct 7, 2025· Updated Apr 15, 2026
CVE-2025-10645
CVE-2025-10645
Description
The WP Reset plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.05 via the WF_Licensing::log() method when debugging is enabled (default). This makes it possible for unauthenticated attackers to extract sensitive license key and site data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <= 2.05
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.