CVE-2025-4370 | Brizy Plugin up to 2.6.20 on WordPress TXT File store_file authorization

Inserito da Angelo Barbosa | Lug 28, 2025 | CVE

A vulnerability was found in Brizy Plugin up to 2.6.20 on WordPress. It has been classified as critical. Affected is the function store_file of the component TXT File Handler. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-4370. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-4370 | Brizy Plugin up to 2.6.20 on WordPress TXT File store_file authorization

Post correlati

CVE-2024-13378 | GravityForms Plugin 2.9.0.1/2.9.1.3 on WordPress style_settings cross site scripting

CVE-2024-50837 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request admin_user.php firstname/username cross site scripting

CVE-2024-7386 | Premium Packages Plugin up to 5.9.1 on WordPress cross-site request forgery

CVE-2024-37568 | Authlib up to 1.3.0 Asymmetric Public Key jwt.decode Privilege Escalation (Issue 654)