CVE-2025-0357 | Iqonic Design WPBookit Plugin up to 1.6.9 on WordPress handle_image_upload unrestricted upload

Inserito da Angelo Barbosa | Gen 25, 2025 | CVE

A vulnerability classified as critical has been found in Iqonic Design WPBookit Plugin up to 1.6.9 on WordPress. This affects the function WPB_Profile_controller::handle_image_upload. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-0357. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-0357 | Iqonic Design WPBookit Plugin up to 1.6.9 on WordPress handle_image_upload unrestricted upload

Post correlati

CVE-2025-23430 | Oren Yomtov Mass Custom Fields Manager Plugin up to 1.5 on WordPress cross-site request forgery

CVE-2024-53909 | Veritas Enterprise Vault up to 15.1 .NET Remoting TCP Port deserialization (ZDI-CAN-24334)

CVE-2024-10502 | ESAFENET CDG 5 FileDirectoryService.java getOneFileDirectory directoryId sql injection

CVE-2024-9139 | Moxa TN-4900 prior 3.12.1 os command injection