Low severity3.7NVD Advisory· Published Jul 21, 2025· Updated Apr 15, 2026
CVE-2025-54352
CVE-2025-54352
Description
WordPress 3.5 through 6.8.2 allows remote attackers to guess titles of private and draft posts via pingback.ping XML-RPC requests. NOTE: the Supplier is not changing this behavior.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=3.5,<=6.8.2+ 1 more
- (no CPE)range: >=3.5,<=6.8.2
- (no CPE)range: >=3.5 <=6.8.2
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.