CVE-2025-22773

{"id": "CVE-2025-22773", "cveTags": [], "metrics": {}, "published": "2025-01-15T16:15:40.027", "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/htaccess-file-editor/vulnerability/wordpress-htaccess-file-editor-1-0-19-broken-authentication-vulnerability?_s_id=cve", "source": "audit@patchstack.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "audit@patchstack.com", "description": [{"lang": "en", "value": "CWE-538"}]}], "descriptions": [{"lang": "en", "value": "Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in WP Chill Htaccess File Editor htaccess-file-editor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Htaccess File Editor: from n/a through <= 1.0.19."}, {"lang": "es", "value": "La vulnerabilidad de inserci\u00f3n de informaci\u00f3n confidencial en un archivo o directorio de acceso externo en WPChill Htaccess File Editor permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a Htaccess File Editor: desde n/a hasta 1.0.19."}], "lastModified": "2026-04-01T16:22:41.790", "sourceIdentifier": "audit@patchstack.com"}