cleantalk
Vulnerabilities and Security Researches

Brizy – Page Builder, CVE-2025-0969

CVE, Research URL

CVE-2025-0969

Home page URL

Security reports for Brizy – Page Builder

Application

Brizy – Page Builder

Published on
Dec 13, 2025
Research Description
The Brizy – Page Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.16 via the get_users() function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including email addresses and hashed passwords of administrators.
Affected versions
max 2.7.17.
Status
vulnerable
Previous vulnerability researches
Simple User Meta Editor (CVE-2025-14888) , Jan 11, 2026
New vulnerability
Product Catalog Simple (CVE-2025-58992) , Apr 25, 2026
WP Proposals (CVE-2025-57965) , Apr 25, 2026
Countdown Timer for Elementor (CVE-2025-8445) , Apr 25, 2026
Library Bookshelves (CVE-2025-57964) , Apr 25, 2026
Best WooCommerce Builder for Elementor: Customize Checkout, Shop, Product & More With CoDesigner (CVE-2025-57961) , Apr 25, 2026