CVE-2025-14059 | EmailKit Plugin up to 1.6.1 on WordPress REST API Endpoint create_template path traversal

Inserito da Angelo Barbosa | Gen 6, 2026 | CVE

A vulnerability was found in EmailKit Plugin up to 1.6.1 on WordPress. It has been rated as critical. This impacts the function create_template of the component REST API Endpoint. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2025-14059. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-14059 | EmailKit Plugin up to 1.6.1 on WordPress REST API Endpoint create_template path traversal

Post correlati

CVE-2024-21095 | Oracle Primavera P6 Enterprise Project Portfolio Management Remote Code Execution

CVE-2024-5883 | Ultimate Classified Listings Plugin up to 1.2 on WordPress cross site scripting

CVE-2024-38260 | Microsoft

CVE-2025-36035 | IBM PowerVM Hypervisor up to FW950.E0/FW1050.50/FW1060.40 allocation of resources