CVE-2025-13376 | ProjectList Plugin up to 0.3.0 on WordPress unrestricted upload

Inserito da Angelo Barbosa | Nov 25, 2025 | CVE

A vulnerability was found in ProjectList Plugin up to 0.3.0 on WordPress. It has been classified as critical. This vulnerability affects unknown code. This manipulation causes unrestricted upload.

This vulnerability is tracked as CVE-2025-13376. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-13376 | ProjectList Plugin up to 0.3.0 on WordPress unrestricted upload

Post correlati

CVE-2024-27402 | Linux Kernel up to 6.1.79/6.6.18/6.7.6 phonet skb_queue_empty buffer overflow

CVE-2025-6164 | TOTOLINK A3002R 4.0.0-B20230531.1404 HTTP POST Request /boafrm/formMultiAP submit-url buffer overflow

CVE-2024-38894 | Wavlink WN551K1 touchlist_sync.cgi IP command injection

CVE-2021-47081 | Linux Kernel up to 5.12.6 gaudi hl_cb_kernel_create of use after free (b49f5af30b0e/115726c5d312)