cleantalk
Vulnerabilities and Security Researches

BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support, CVE-2025-14980

CVE, Research URL

CVE-2025-14980

Home page URL

Security reports for BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support

Application

BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support

Published on
Jan 09, 2026
Research Description
The BetterDocs plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.3.3 via the scripts() function. This makes it possible for authenticated attackers, with contributor-level access and above, to extract sensitive data including the OpenAI API key stored in plugin settings.
Affected versions
max 4.3.4.
Status
vulnerable
Previous vulnerability researches
BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support (CVE-2024-43227) , Aug 13, 2024
BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support (570a5ea4283ba5eedfe576e20fa6580f667ce12b) , Jun 07, 2024
BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support (CVE-2024-2845) , Jun 07, 2024
BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support (CVE-2024-30226) , Jun 07, 2024
BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support (CVE-2026-3875) , Apr 17, 2026
New vulnerability
VI: Include Post By (CVE-2026-5717) , Apr 17, 2026
Responsive Accordion Slider (CVE-2026-0635) , Apr 17, 2026
Petje.af (CVE-2026-4002) , Apr 17, 2026
LinkedIn SC (CVE-2026-0812) , Apr 17, 2026
Coachific Shortcode (CVE-2026-4005) , Apr 17, 2026