CVE-2025-5322 | e4jvikwp VikRentCar Car Rental Management System Plugin up to 1.4.3 on WordPress do_updatecar unrestricted upload

Inserito da Angelo Barbosa | Lug 3, 2025 | CVE

A vulnerability, which was classified as critical, was found in e4jvikwp VikRentCar Car Rental Management System Plugin up to 1.4.3 on WordPress. This affects the function do_updatecar. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-5322. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-5322 | e4jvikwp VikRentCar Car Rental Management System Plugin up to 1.4.3 on WordPress do_updatecar unrestricted upload

Post correlati

CVE-2024-0224 | Google Chrome prior 120.0.6099.199 WebAudio use after free

CVE-2025-4435 | Python CPython up to 3.14.0b1 (Issue 135034)

CVE-2025-25156 | Stanko Metodiev Quote Comments Plugin up to 2.2.1 on WordPress cross-site request forgery

CVE-2024-12518 | Teplitsa shMapper Plugin up to 1.4.18 on WordPress cross site scripting