CVE-2025-11693 — AI Deep Analysis Summary

🚨 **Essence**: Sensitive info leak via `cookies.txt`. <br>💥 **Consequences**: Attackers get auth cookies. Leads to full account takeover & data breach. 📉

🛡️ **CWE-200**: Information Exposure. <br>🔍 **Flaw**: The plugin publicly exposes `cookies.txt` files. No access control on this specific file. 📂

📦 **Product**: Export WP Page to Static HTML & PDF. <br>👥 **Vendor**: recorp. <br>📅 **Affected**: Version **4.3.4 and earlier**. ⚠️

🕵️ **Hackers**: Unauthenticated attackers. <br>🔑 **Data**: Authentication cookies. <br>🚀 **Impact**: Access sensitive admin data. Bypass login security. 💻

⚖️ **Threshold**: Medium. <br>🔑 **Auth**: No login needed for the file. <br>⚙️ **Config**: Requires an admin to trigger a backup with specific roles. 🎯

📜 **PoC**: Yes. <br>🔗 **Source**: ProjectDiscovery Nuclei templates available. <br>🌐 **Status**: Publicly documented. Easy to automate. 🤖

🔍 **Check**: Scan for `cookies.txt` exposure. <br>🛠️ **Tool**: Use Nuclei or manual HTTP requests. <br>👀 **Feature**: Look for static HTML export artifacts. 📝

🩹 **Fix**: Update plugin to **> 4.3.4**. <br>📢 **Source**: WordPress plugin repo & WordFence intel. <br>✅ **Status**: Patch available. 🔄

🚧 **Workaround**: Disable the plugin if not needed. <br>🔒 **Mitigate**: Restrict file permissions. <br>👀 **Monitor**: Watch for unauthorized backup triggers. 🛡️

🔥 **Priority**: HIGH. <br>📈 **Risk**: CVSS High (C:H, I:H, A:H). <br>⏳ **Action**: Patch immediately. Don't wait. 🏃‍♂️