{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-18T23:45:41.387","vulnerabilities":[{"cve":{"id":"CVE-2025-49294","sourceIdentifier":"audit@patchstack.com","published":"2025-06-06T13:15:45.400","lastModified":"2026-06-17T09:31:03.263","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Insertion of Sensitive Information Into Sent Data vulnerability in CodeRevolution Crawlomatic Multisite Scraper Post Generator crawlomatic-multipage-scraper-post-generator allows Retrieve Embedded Sensitive Data.This issue affects Crawlomatic Multisite Scraper Post Generator: from n/a through <= 2.6.8.2."},{"lang":"es","value":"La vulnerabilidad de inserción de información confidencial en los datos enviados en CodeRevolution Crawlomatic Multisite Scraper Post Generator permite recuperar datos confidenciales incrustados. Este problema afecta al generador de publicaciones Crawlomatic Multisite Scraper desde n/d hasta la versión 2.6.8.2."}],"affected":[{"source":"audit@patchstack.com","affectedData":[{"vendor":"CodeRevolution","product":"Crawlomatic Multisite Scraper Post Generator","defaultStatus":"unaffected","collectionURL":"https://wordpress.org/plugins","packageName":"crawlomatic-multipage-scraper-post-generator","versions":[{"version":"0","lessThanOrEqual":"2.6.8.2","versionType":"custom","status":"affected","changes":[{"at":"2.6.9","status":"unaffected"}]}]}]}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-06-06T19:01:10.557549Z","id":"CVE-2025-49294","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-201"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/crawlomatic-multipage-scraper-post-generator/vulnerability/wordpress-crawlomatic-multisite-scraper-post-generator-plugin-2-6-8-2-sensitive-data-exposure-via-log-exposure-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}