2025-11-13 07:27:53
Wordfence
PUBLISHED
The Comment Edit Core – Simple Comment Editing plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.0 via the ajax_get_comment function. This makes it possible for unauthenticated attackers to extract sensitive data including user IDs, IP addresses, and email addresses.