WordPress Plugin Vulnerabilities

Document Library Lite < 1.1.7 - Sensitive Information Exposure

Description

The plugin is vulnerable to Improper Authorization due to the plugin exposing an unauthenticated AJAX action dll_load_posts which returns a JSON table of document data without performing nonce or capability checks. The handler accepts an attacker-controlled args array where the status option explicitly allows draft, pending, future, and any. This makes it possible for unauthenticated attackers to retrieve unpublished document titles and content via the AJAX endpoint.

Affects Plugins

Plugin icon
document-library-lite
Fixed in 1.1.7

References

CVE
CVE-2025-11174
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/2b73d48a-1f10-4e47-a18f-82a3103b72bd

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Avraham Shemesh, Kai Aizen
Verified
No
WPVDB ID
d928ca1c-905f-44a7-832a-027ce2281978

Timeline

Publicly Published
2025-10-31 (about 7 months ago)
Added
2025-10-31 (about 7 months ago)
Last Updated
2025-10-31 (about 7 months ago)

Other

Published
Title
Published
2026-01-23
Title
UPI QR Code Payment Gateway for WooCommerce < 1.6.1 - Missing Authorization
Published
2025-01-16
Title
Contact Form 7 Anti Spambot <= 1.0.1 - Missing Authorization
Published
2025-01-06
Title
Host PHP Info <= 1.0.4 - Missing Authorization to Unauthenticated Sensitive Information Disclosure
Published
2026-05-01
Title
FundPress < 2.0.9 - Missing Authorization to Unauthenticated Arbitrary Donation Status Modification via donate_action_status AJAX Handler
Published
2025-01-06
Title
SMS Alert Order Notifications – WooCommerce < 3.7.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update