CVE-2025-22633: Insertion of Sensitive Information into Externally-Accessible File or Directory in StellarWP Give – Divi Donation Modules
Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in StellarWP Give – Divi Donation Modules give-donation-modules-for-divi allows Retrieve Embedded Sensitive Data.This issue affects Give – Divi Donation Modules: from n/a through <= 2.0.0.
AI Analysis
Technical Summary
The vulnerability identified as CVE-2025-22633 affects the Give – Divi Donation Modules plugin by StellarWP, specifically versions up to 2.0.0. It involves the insertion of sensitive information into files or directories that are accessible externally, which can allow attackers or unauthorized users to retrieve embedded sensitive data. The vulnerability is published and tracked but lacks detailed technical or exploit information and does not have an associated CVSS score or vendor patch advisory at this time.
Potential Impact
The impact of this vulnerability is the potential exposure of sensitive information through externally accessible files or directories. This could lead to unauthorized data disclosure. There are no known exploits in the wild, and the extent of sensitive data exposure is not detailed in the available information.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official patch or workaround is currently documented, users of the affected versions should monitor vendor communications for updates and consider restricting external access to files and directories related to the plugin as a precautionary measure.
CVE-2025-22633: Insertion of Sensitive Information into Externally-Accessible File or Directory in StellarWP Give – Divi Donation Modules
Description
Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in StellarWP Give – Divi Donation Modules give-donation-modules-for-divi allows Retrieve Embedded Sensitive Data.This issue affects Give – Divi Donation Modules: from n/a through <= 2.0.0.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability identified as CVE-2025-22633 affects the Give – Divi Donation Modules plugin by StellarWP, specifically versions up to 2.0.0. It involves the insertion of sensitive information into files or directories that are accessible externally, which can allow attackers or unauthorized users to retrieve embedded sensitive data. The vulnerability is published and tracked but lacks detailed technical or exploit information and does not have an associated CVSS score or vendor patch advisory at this time.
Potential Impact
The impact of this vulnerability is the potential exposure of sensitive information through externally accessible files or directories. This could lead to unauthorized data disclosure. There are no known exploits in the wild, and the extent of sensitive data exposure is not detailed in the available information.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official patch or workaround is currently documented, users of the affected versions should monitor vendor communications for updates and consider restricting external access to files and directories related to the plugin as a precautionary measure.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Patchstack
- Date Reserved
- 2025-01-07T21:02:24.870Z
- Cvss Version
- null
- State
- PUBLISHED
Threat ID: 69cd75fbe6bfc5ba1df08b90
Added to database: 4/1/2026, 7:46:03 PM
Last enriched: 4/29/2026, 6:52:41 AM
Last updated: 5/21/2026, 7:15:28 PM
Views: 15
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.