-
·
CVE-2025-55715: High Risk Sensitive Information Exposure Affecting 300,000+ Websites
I recently discovered an unauthenticated sensitive information exposure vulnerability in the WordPress Otter Blocks plugin. It has been assigned CVE-2025-55715 and published in the patchstack database. Over 300,000 websites were affected by this vulnerability. The plugin exposes sensitive content due to a lack of access restrictions on a dynamic content REST endpoint. This should be…