CVE-2025-14867 | liangshao Flashcard Plugin for WordPress up to 0.9 on WordPress Shortcode flashcard path traversal

Inserito da Angelo Barbosa | Gen 7, 2026 | CVE

A vulnerability categorized as critical has been discovered in liangshao Flashcard Plugin for WordPress up to 0.9 on WordPress. Affected by this issue is the function flashcard of the component Shortcode Handler. Executing a manipulation can lead to path traversal.

This vulnerability is tracked as CVE-2025-14867. The attack can be launched remotely. No exploit exists.

CVE-2025-14867 | liangshao Flashcard Plugin for WordPress up to 0.9 on WordPress Shortcode flashcard path traversal

Post correlati

CVE-2025-67896 | Exim up to 4.99.0 heap-based overflow

CVE-2024-3088 | PHPGurukul Emergency Ambulance Hiring Portal 1.0 Forgot Password Page forgot-password.php username sql injection

CVE-2025-10075 | SourceCodester Online Polling System 1.0 /manage-profile.php firstname cross site scripting

CVE-2024-56812 | IBM EntireX 11.1 information exposure