CVE-2025-13595 | CIBELES AI Plugin up to 1.10.8 on WordPress actualizador_git.php unrestricted upload

Inserito da Angelo Barbosa | Nov 25, 2025 | CVE

A vulnerability marked as critical has been reported in CIBELES AI Plugin up to 1.10.8 on WordPress. This issue affects some unknown processing of the file actualizador_git.php. The manipulation leads to unrestricted upload.

This vulnerability is documented as CVE-2025-13595. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-13595 | CIBELES AI Plugin up to 1.10.8 on WordPress actualizador_git.php unrestricted upload

Post correlati

CVE-2023-48733 | Canonical Ubuntu EDK II prior 2023.05-2ubuntu0.1 UEFI Shell Local Privilege Escalation

CVE-2025-12034 | Fast Velocity Minify Plugin up to 3.5.1 on WordPress Setting cross site scripting

CVE-2025-0481 | D-Link DIR-878 1.03 HTTP POST Request /dllog.cgi information disclosure

CVE-2025-22136 | Eugeny tabby up to 1.0.216 Electron Fuse code injection (GHSA-prcj-7rvc-26h4)