CVE-2025-1662 | apprhyme URL Media Uploader Plugin up to 1.0.0 on WordPress url_media_uploader_url_upload server-side request forgery

Inserito da Angelo Barbosa | Feb 28, 2025 | CVE

A vulnerability, which was classified as critical, has been found in apprhyme URL Media Uploader Plugin up to 1.0.0 on WordPress. Affected by this issue is the function url_media_uploader_url_upload. The manipulation leads to server-side request forgery.

This vulnerability is handled as CVE-2025-1662. The attack may be launched remotely. There is no exploit available.

CVE-2025-1662 | apprhyme URL Media Uploader Plugin up to 1.0.0 on WordPress url_media_uploader_url_upload server-side request forgery

Post correlati

CVE-2023-49819 | Gordon Böhme & Antonio Leutsch Structured Content JSON-LD wpsc Plugin up to 1.5.3 on WordPress deserialization

CVE-2023-31297 | SESAMI Planfocus CPTO 6.3.8.6 718 Name cross site scripting (usd-2022-0058)

CVE-2024-6189 | Tenda A301 15.13.08.12 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

CVE-2022-49110 | Linux Kernel up to 5.15.33/5.16.19/5.17.2 denial of service