CVE-2025-4102 | Beaver Builder Plugin up to 2.9.1 on WordPress save_enabled_icons unrestricted upload

Inserito da Angelo Barbosa | Giu 20, 2025 | CVE

A vulnerability was found in Beaver Builder Plugin up to 2.9.1 on WordPress and classified as critical. This issue affects the function save_enabled_icons. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-4102. The attack may be initiated remotely. There is no exploit available.

CVE-2025-4102 | Beaver Builder Plugin up to 2.9.1 on WordPress save_enabled_icons unrestricted upload

Post correlati

CVE-2023-50294 | WESEEK GROWI up to 6.0.5 App Settings Page /admin/app cleartext storage

CVE-2023-50808 | Zimbra Collaboration Suite up to 9.0.0 Patch 37 Modern UI cross site scripting

CVE-2024-34548 | Themesgrove WidgetKit Plugin up to 2.4.8 on WordPress cross site scripting

CVE-2023-38522 | Apache Traffic Server up to 8.1.10/9.2.4 Field Name request smuggling