Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit 5e628d37d141 · 2026-01-24T15:32:44.000Z
GHSA-46wh-5x8w-r437 GHSA-7wpw-5pc9-jh59
diff --git a/advisories/unreviewed/2026/01/GHSA-46wh-5x8w-r437/GHSA-46wh-5x8w-r437.json b/advisories/unreviewed/2026/01/GHSA-46wh-5x8w-r437/GHSA-46wh-5x8w-r437.json
@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-46wh-5x8w-r437",
+  "modified": "2026-01-24T15:30:20Z",
+  "published": "2026-01-24T15:30:20Z",
+  "aliases": [
+    "CVE-2026-0911"
+  ],
+  "details": "The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the action_import_module() function in all versions up to, and including, 7.8.9.2. This makes it possible for authenticated attackers, with a lower-privileged role (e.g., Subscriber-level access and above), to upload arbitrary files on the affected site's server which may make remote code execution possible. Successful exploitation requires an admin to grant Hustle module permissions (or module edit access) to the low-privileged user so they can access the Hustle admin page and obtain the required nonce.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0911"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3440956/wordpress-popup"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/22be5fb5-143e-4934-9f93-e17def18e883?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-434"
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-24T13:15:55Z"
+  }
+}
diff --git a/advisories/unreviewed/2026/01/GHSA-7wpw-5pc9-jh59/GHSA-7wpw-5pc9-jh59.json b/advisories/unreviewed/2026/01/GHSA-7wpw-5pc9-jh59/GHSA-7wpw-5pc9-jh59.json
@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7wpw-5pc9-jh59",
+  "modified": "2026-01-24T15:30:20Z",
+  "published": "2026-01-24T15:30:20Z",
+  "aliases": [
+    "CVE-2025-13920"
+  ],
+  "details": "The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.9 via the wdk_public_action AJAX handler. This makes it possible for unauthenticated attackers to extract email addresses for users with Directory Kit-specific user roles.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13920"
+    },
+    {
+      "type": "WEB",
+      "url": "https://plugins.trac.wordpress.org/changeset/3435482/wpdirectorykit"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/8905dcc7-d3c8-4ae8-818c-df3e6ed2ad9c?source=cve"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-200"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-01-24T13:15:54Z"
+  }
+}
