CVE-2025-0394 | Groundhogg Plugin up to 3.7.3.5 on WordPress gh_big_file_upload unrestricted upload

Inserito da Angelo Barbosa | Gen 13, 2025 | CVE

A vulnerability, which was classified as critical, was found in Groundhogg Plugin up to 3.7.3.5 on WordPress. Affected is the function gh_big_file_upload. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-0394. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-0394 | Groundhogg Plugin up to 3.7.3.5 on WordPress gh_big_file_upload unrestricted upload

Post correlati

CVE-2024-1142 | Sonatype IQ Server up to 170 Request path traversal

CVE-2024-41905 | Siemens SINEC Traffic Analyzer up to 1.x access control (ssa-716317)

CVE-2024-38215 | Microsoft Windows up to Server 2022 23H2 Cloud Files Mini Filter Driver integer overflow

CVE-2024-4806 | Kashipara College Management System 1.0 each_extracurricula_activities.php id sql injection