CVE-2025-4602 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress get_file path traversal

Inserito da Angelo Barbosa | Mag 23, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress. Affected by this issue is the function get_file. The manipulation leads to path traversal.

This vulnerability is handled as CVE-2025-4602. The attack may be launched remotely. There is no exploit available.

CVE-2025-4602 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress get_file path traversal

Post correlati

CVE-2023-5768 | Hitachi Energy RTU500 APDU Frame Layout denial of service

CVE-2022-49268 | Linux Kernel up to 5.4.188/5.10.109/5.15.32/5.16.18/5.17.1 snd_dma_free_pages null pointer dereference

CVE-2024-20456 | Cisco IOS XR 24.2.1 Secure Boot permission assignment (cisco-sa-xr-secure-boot-quD5g8Ap)

CVE-2023-52334 | Steinbeis Allegra 7.5.0 Build 29 downloadAttachmentGlobal path traversal (ZDI-24-112)