CVE-2025-23969: WordPress KI Live Video Conferences <= 5.5.15 - Sensitive Data Exposure Vulnerability

5.3 CVSS

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in whassan KI Live Video Conferences allows Retrieve Embedded Sensitive Data. This issue affects KI Live Video Conferences: from n/a through 5.5.15.

Classification

CVE ID: CVE-2025-23969

CVSS Base Severity: MEDIUM

CVSS Base Score: 5.3

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Problem Types

CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere

Affected Products

Vendor: whassan

Product: KI Live Video Conferences

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23969
https://patchstack.com/database/wordpress/plugin/ki-live-video-conferences/vulnerability/wordpress-ki-live-video-conferences-5-5-15-sensitive-data-exposure-vulnerability?_s_id=cve

Timeline