CVE-2025-4102 | Beaver Builder Plugin up to 2.9.1 on WordPress save_enabled_icons unrestricted upload

Inserito da Angelo Barbosa | Giu 20, 2025 | CVE

A vulnerability was found in Beaver Builder Plugin up to 2.9.1 on WordPress and classified as critical. This issue affects the function save_enabled_icons. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-4102. The attack may be initiated remotely. There is no exploit available.

CVE-2025-4102 | Beaver Builder Plugin up to 2.9.1 on WordPress save_enabled_icons unrestricted upload

Post correlati

CVE-2024-36409 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 sql injection (GHSA-pxq4-vw23-v73f)

CVE-2024-43245 | eyecix JobSearch Plugin up to 2.3.4 on WordPress privileges management

CVE-2024-7331 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi UploadCustomModule File buffer overflow

CVE-2024-12898 | 1000 Projects Attendance Tracking Management System 1.0 faculty_action.php faculty_course_id sql injection