CVE-2024-13448 | ThemeREX Addons Plugin up to 2.32.3 on WordPress trx_addons_uploads_save_data unrestricted upload

Inserito da Angelo Barbosa | Gen 28, 2025 | CVE

A vulnerability, which was classified as critical, has been found in ThemeREX Addons Plugin up to 2.32.3 on WordPress. This issue affects the function trx_addons_uploads_save_data. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2024-13448. The attack may be initiated remotely. There is no exploit available.

CVE-2024-13448 | ThemeREX Addons Plugin up to 2.32.3 on WordPress trx_addons_uploads_save_data unrestricted upload

Post correlati

CVE-2025-0881 | Codezips Gym Management System 1.0 saveroutine.php rname sql injection

CVE-2023-51071 | QStar Archive Solutions 3-0 Build 7 Patch 0 SMB access control

CVE-2024-3593 | UberMenu Plugin up to 3.8.3 on WordPress Setting cross-site request forgery

CVE-2024-0900 | Elespare Plugin up to 2.1.2 on WordPress Post Creation elespare_create_post authorization