CVE-2025-5058 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress set_image unrestricted upload

Inserito da Angelo Barbosa | Mag 23, 2025 | CVE

A vulnerability classified as critical has been found in Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress. Affected is the function set_image. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-5058. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-5058 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress set_image unrestricted upload

Post correlati

CVE-2024-0127 | NVIDIA vGPU/Cloud Gaming prior 16.8/17.4 GPU Kernel Driver Local Privilege Escalation

CVE-2024-0278 | Kashipara Food Management System up to 1.0 partylist_edit_submit.php id sql injection

CVE-2024-7401 | Netskope Client All NSClient Orgkey improper authentication (nskpsa-2024-001)

CVE-2024-9104 | UltimateAI Plugin up to 2.8.3 on WordPress unverified password change