CVE-2025-64258

HIGH 7.5

WordPress Follow My Blog Post plugin <= 2.3.9 - Sensitive Data Exposure vulnerability

CVSS Score

7.5

EPSS Score

0.0%

EPSS Percentile

0th

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in wpweb Follow My Blog Post follow-my-blog-post allows Retrieve Embedded Sensitive Data.This issue affects Follow My Blog Post: from n/a through <= 2.3.9.

CWE	CWE-497
Vendor	wpweb
Product	follow my blog post
Published	Dec 18, 2025
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for wpweb follow my blog post

Be the first to know when new high vulnerabilities affecting wpweb follow my blog post are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

wpweb / Follow My Blog Post

0 ≤ 2.3.9

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/follow-my-blog-post/vulnerability/wordpress-follow-my-blog-post-plugin-2-3-9-sensitive-data-exposure-vulnerability?_s_id=cve

Credits

Denver Jackson | Patchstack Bug Bounty Program