{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-39711", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-04-07T10:58:22.476Z", "datePublished": "2026-04-08T08:30:48.755Z", "dateUpdated": "2026-04-08T08:30:48.755Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "rt18-extensions", "product": "RT-Theme 18 | Extensions", "vendor": "stmcan", "versions": [{"lessThanOrEqual": "2.5", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Bonds | Patchstack Bug Bounty Program"}], "datePublic": "2026-04-08T10:28:44.317Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Insertion of Sensitive Information Into Sent Data vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions allows Retrieve Embedded Sensitive Data.<p>This issue affects RT-Theme 18 | Extensions: from n/a through <= 2.5.</p>"}], "value": "Insertion of Sensitive Information Into Sent Data vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions allows Retrieve Embedded Sensitive Data.This issue affects RT-Theme 18 | Extensions: from n/a through <= 2.5."}], "impacts": [{"capecId": "CAPEC-37", "descriptions": [{"lang": "en", "value": "Retrieve Embedded Sensitive Data"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-201", "description": "Insertion of Sensitive Information Into Sent Data", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-08T08:30:48.755Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Plugin/rt18-extensions/vulnerability/wordpress-rt-theme-18-extensions-plugin-2-5-sensitive-data-exposure-vulnerability?_s_id=cve"}], "title": "WordPress RT-Theme 18 | Extensions plugin <= 2.5 - Sensitive Data Exposure vulnerability"}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Insertion of Sensitive Information Into Sent Data vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions allows Retrieve Embedded Sensitive Data.This issue affects RT-Theme 18 | Extensions: from n/a through <= 2.5."}], "id": "CVE-2026-39711", "lastModified": "2026-04-08T21:26:13.410", "metrics": {}, "published": "2026-04-08T09:16:44.010", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/Wordpress/Plugin/rt18-extensions/vulnerability/wordpress-rt-theme-18-extensions-plugin-2-5-sensitive-data-exposure-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-201"}], "source": "audit@patchstack.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2.5]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "RT-Theme 18 | Extensions", "source": "cna", "vendor": "stmcan"}, "product": "rt-theme_18_|_extensions", "vendor": "stmcan"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-08T10:41:52.211485+00:00", "value": {"mitigation_remediation": ["Upgrade the RT\u2011Theme\u202f18\u202f|\u202fExtensions plugin to a version above\u202f2.5 if a patch has been released.", "If an upgrade is not feasible, disable or remove the plugin from the WordPress installation.", "Verify that the plugin\u2019s output no longer contains hidden sensitive information, for example by inspecting the rendered pages or running a vulnerability scan."], "summary": {"action": "Immediate Patch", "impact": "Sensitive Data Exposure"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the stmcan RT\u2011Theme\u202f18\u202f|\u202fExtensions WordPress plugin versions from the earliest available versions through\u202f\u2264\u202f2.5. Any WordPress site that has this plugin installed and activated during that version range is potentially impacted.", "description_and_impact": "The flaw allows the plugin to expose sensitive information that is embedded in the data it serves to users. This information can be retrieved by interacting with the plugin\u2019s output, potentially exposing internal configuration values or other confidential data. The weakness corresponds to CWE\u2011201, an information\u2011exposure flaw affecting confidentiality.", "risk_and_exploitability": "No publicly available CVSS or EPSS score is provided for this issue, and it is not listed in the CISA KEV catalog, so the precise severity and exploitation likelihood are unclear. Based on the description, it is inferred that an attacker could access the plugin\u2019s data\u2011retrieval endpoints via the web interface, making remote exploitation possible. However, the actual attack conditions and required privileges are not detailed in the available data."}}}}, "created": "2026-04-08T19:27:25.626507+00:00", "updated": "2026-04-08T19:40:06.527604+00:00", "vendors": ["stmcan", "stmcan$PRODUCT$rt-theme_18_|_extensions", "wordpress", "wordpress$PRODUCT$wordpress"]}