CVE-2026-2696

MEDIUM 5.3

Export All URLs < 5.1 - Unauthenticated Sensitive Data Exposure

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

The Export All URLs WordPress plugin before 5.1 generates CSV filenames containing posts URLS (including private posts) in a predictable pattern using a random 6-digit number. These files are stored in the publicly accessible wp-content/uploads/ directory. As a result, any unauthenticated user can brute-force the filenames to gain access to sensitive data contained within the exported files.

Vendor	unknown
Product	export all urls
Published	Apr 1, 2026
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for unknown export all urls

Be the first to know when new medium vulnerabilities affecting unknown export all urls are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Unknown / Export All URLs

0 < 5.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wpscan.com: https://wpscan.com/vulnerability/55d627c1-ad05-4cd1-ae7b-932d84c19313/

Credits

Mohammad Aghdasi WPScan