CVE-2025-3054 | WP User Frontend Pro Plugin up to 4.1.3 on WordPress upload_files unrestricted upload

Inserito da Angelo Barbosa | Giu 4, 2025 | CVE

A vulnerability, which was classified as critical, has been found in WP User Frontend Pro Plugin up to 4.1.3 on WordPress. This issue affects the function upload_files. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-3054. The attack may be initiated remotely. There is no exploit available.

CVE-2025-3054 | WP User Frontend Pro Plugin up to 4.1.3 on WordPress upload_files unrestricted upload

Post correlati

CVE-2024-6230 | پلاگین پرداخت دلخواه Plugin up to 2.9.8 on WordPress Setting cross-site request forgery

CVE-2023-46708 | OpenHarmony up to 3.2.4 use after free

CVE-2024-44231 | Apple macOS up to 15.0 Login Window state issue

CVE-2023-48909 | Jave2 3.3.1 FFmpeg Privilege Escalation