CVE-2026-25008 PUBLISHED

WordPress Ninja Tables plugin <= 5.2.5 - Sensitive Data Exposure vulnerability

Assigner: Patchstack
Reserved: 28.01.2026 Published: 19.02.2026 Updated: 19.02.2026

Insertion of Sensitive Information Into Sent Data vulnerability in Shahjahan Jewel Ninja Tables ninja-tables allows Retrieve Embedded Sensitive Data.This issue affects Ninja Tables: from n/a through <= 5.2.5.

Product Status

Vendor	Shahjahan Jewel
Product	Ninja Tables
Versions	Default: unaffected affected from n/a to <= 5.2.5 (incl.)

Credits

theviper17 | Patchstack Bug Bounty Program finder

References

https://patchstack.com/database/Wordpress/Plugin/ninja-tables/vulnerability/wordpress-ninja-tables-plugin-5-2-5-sensitive-data-exposure-vulnerability?_s_id=cve

Problem Types

Insertion of Sensitive Information Into Sent Data CWE

Impacts

Retrieve Embedded Sensitive Data