CVE-2025-12563 | Blog2Social Plugin up to 8.6.0 on WordPress theuploadVideo unrestricted upload

Inserito da Angelo Barbosa | Nov 5, 2025 | CVE

A vulnerability identified as critical has been detected in Blog2Social Plugin up to 8.6.0 on WordPress. The impacted element is the function theuploadVideo. Performing manipulation results in unrestricted upload.

This vulnerability is known as CVE-2025-12563. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-12563 | Blog2Social Plugin up to 8.6.0 on WordPress theuploadVideo unrestricted upload

Post correlati

CVE-2024-7579 | Alien Technology ALR-F800 up to 19.10.24.00 File Name upgrade.cgi popen uploadedFile os command injection

CVE-2024-42785 | Kashipara Music Management System 1.0 index.php id sql injection

CVE-2024-8149 | Esri Portal for ArcGIS up to 11.1/11.2 Link cross site scripting

CVE-2024-47129 | goTenna Pro Series up to 1.6.1 Length observable response discrepancy (icsa-24-270-04)