What is CVE-2025-49408?

CVE-2025-49408 is a critical-severity vulnerability in Wpdeveloper Templately, classified under Insertion of Sensitive Information into Sent Data. CVSS score: 10.0/10. Published 2025-08-20.

How severe is CVE-2025-49408?

Critical severity. CVSS v3 base score is 10.0 out of 10.

Vulnerability in Wpdeveloper Templately

CVE-2025-49408

Insertion of Sensitive Information Into Sent Data vulnerability in WPDeveloper Templately allows Retrieve Embedded Sensitive Data. This issue affects Templately: from n/a through 3.2.7.

EPSS: 0.001 (28.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 10.0 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H.

Affected products

Wpdeveloper Templately — versions n/a

Weakness classification (CWE)

CWE-201 — Insertion of Sensitive Information into Sent Data

References

audit@patchstack.com (vdb-entry)

Frequently asked questions

What is CVE-2025-49408?: CVE-2025-49408 is a critical-severity vulnerability in Wpdeveloper Templately, classified under Insertion of Sensitive Information into Sent Data. CVSS score: 10.0/10. Published 2025-08-20.
How severe is CVE-2025-49408?: Critical severity. CVSS v3 base score is 10.0 out of 10.