{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-15T06:45:13.427","vulnerabilities":[{"cve":{"id":"CVE-2025-5815","sourceIdentifier":"security@wordfence.com","published":"2025-06-13T04:15:33.020","lastModified":"2025-06-16T12:32:18.840","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"The Traffic Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tfcm_maybe_set_bot_flags() function in all versions up to, and including, 3.2.2. This makes it possible for unauthenticated attackers to disabled bot logging."},{"lang":"es","value":"El complemento Traffic Monitor para WordPress es vulnerable a la modificación no autorizada de datos debido a la falta de una comprobación de capacidad en la función tfcm_maybe_set_bot_flags() en todas las versiones hasta la 3.2.2 incluida. Esto permite que atacantes no autenticados deshabiliten el registro de bots."}],"metrics":{"cvssMetricV31":[{"source":"security@wordfence.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:L\/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"security@wordfence.com","type":"Secondary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https:\/\/plugins.trac.wordpress.org\/browser\/traffic-monitor\/trunk\/traffic-monitor.php#L74","source":"security@wordfence.com"},{"url":"https:\/\/plugins.trac.wordpress.org\/changeset?sfp_email=&sfph_mail=&reponame=&old=3309996%40traffic-monitor&new=3309996%40traffic-monitor&sfp_email=&sfph_mail=","source":"security@wordfence.com"},{"url":"https:\/\/www.wordfence.com\/threat-intel\/vulnerabilities\/id\/538669c7-3237-4059-85dc-4f4af1ff5a19?source=cve","source":"security@wordfence.com"}]}}]}