Latest

Information leakage vulnerability in WP Reset 2.05

CVE-2025-10645

Severity: medium-risk
Status: Fixed
Publication: October 6, 2025

The WP Reset plugin for WordPress is at risk of exposing sensitive information in all versions up to and including 2.05. This can happen when the debugging feature is turned on, which is usually the default setting. This means that attackers who are not logged in could potentially access important information such as license keys and site data.

Detected in:

WP Reset Pro – Most Advanced WordPress Reset Tool fixed vulnerable versions: >= * <= 2.05

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Information leakage vulnerability in WP Reset 2.05

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Information leakage vulnerability in WP Reset 2.05

Detected in: