CVE-2025-1043 | awsmin Embed Any Document Plugin up to 2.7.5 on WordPress Shortcode embeddoc server-side request forgery

Inserito da Angelo Barbosa | Feb 20, 2025 | CVE

A vulnerability classified as critical has been found in awsmin Embed Any Document Plugin up to 2.7.5 on WordPress. This affects the function embeddoc of the component Shortcode Handler. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2025-1043. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-1043 | awsmin Embed Any Document Plugin up to 2.7.5 on WordPress Shortcode embeddoc server-side request forgery

Post correlati

CVE-2024-6188 | Parsec Automation TrackSYS 11.x.x pagedefinition ID direct request

CVE-2024-8237 | GitLab Community Edition/Enterprise Edition up to 17.4.4/17.5.2/17.6.0 cargo.toml File algorithmic complexity (Issue 480900)

CVE-2023-6620 | POST SMTP Mailer Plugin up to 2.8.6 on WordPress sql injection

CVE-2024-6302 | Conduit up to 0.6.0 insufficient permissions or privileges