CVE-2025-10145 | Auto Featured Image Plugin up to 4.1.7 on WordPress upload_to_library server-side request forgery

Inserito da Angelo Barbosa | Ott 28, 2025 | CVE

A vulnerability categorized as critical has been discovered in Auto Featured Image Plugin up to 4.1.7 on WordPress. This vulnerability affects the function upload_to_library. Such manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2025-10145. The attack can be launched remotely. No exploit exists.

CVE-2025-10145 | Auto Featured Image Plugin up to 4.1.7 on WordPress upload_to_library server-side request forgery

Post correlati

CVE-2024-4061 | Survey Maker Plugin up to 4.2.8 on WordPress Setting cross site scripting

CVE-2024-32869 | hono prior 4.2.7 serveStatic path traversal

CVE-2024-1509 | Brocade ASCG up to 3.1.x Web Interface unprotected transport of credentials

CVE-2025-59251 | Microsoft Edge up to 140.0.3485.71 code injection