cleantalk
Vulnerabilities and Security Researches

PixelYourSite – Your smart PIXEL (TAG) Manager, CVE-2025-14280

CVE, Research URL

CVE-2025-14280

Home page URL

Security reports for PixelYourSite – Your smart PIXEL (TAG) Manager

Application

PixelYourSite – Your smart PIXEL (TAG) Manager

Published on
Dec 30, 2025
Research Description
The PixelYourSite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 11.1.5 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files, when the "Meta API logs" setting is enabled (disabled by default). The vulnerability was partially patched in version 11.1.5 and fully patched in version 11.1.5.1.
Affected versions
max 11.1.5.1.
Status
vulnerable
Previous vulnerability researches
PixelYourSite – Your smart PIXEL (TAG) Manager (CVE-2024-37447) , Jul 02, 2024
PixelYourSite – Your smart PIXEL (TAG) Manager (CVE-2025-14280) , Jan 27, 2026
PixelYourSite – Your smart PIXEL (TAG) Manager (CVE-2025-22300) , Jan 09, 2025
PixelYourSite – Your smart PIXEL (TAG) Manager (CVE-2024-7870) , Sep 05, 2024
PixelYourSite – Your smart PIXEL (TAG) Manager (CVE-2023-22700) , Jun 07, 2024
New vulnerability
Podlove Podcast Publisher (CVE-2026-32448) , Mar 29, 2026
Booking for Appointments and Events Calendar – Amelia (CVE-2026-24963) , Mar 29, 2026
Booking for Appointments and Events Calendar – Amelia (CVE-2026-24967) , Mar 29, 2026
SiteGuard WP Plugin (CVE-2026-27411) , Mar 29, 2026
Visual Portfolio, Photo Gallery & Post Grid (CVE-2026-32537) , Mar 29, 2026