The Brizy – Page Builder plugin for WordPress is...
Moderate severity
Unreviewed
Published
Dec 13, 2025
to the GitHub Advisory Database
•
Updated Dec 13, 2025
Description
Published by the National Vulnerability Database
Dec 13, 2025
Published to the GitHub Advisory Database
Dec 13, 2025
Last updated
Dec 13, 2025
The Brizy – Page Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.16 via the get_users() function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including email addresses and hashed passwords of administrators.
References