CVE-2025-4392 | Shared Files Plugin up to 1.7.48 on WordPress sanitize_file cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability classified as problematic was found in Shared Files Plugin up to 1.7.48 on WordPress. This vulnerability affects the function sanitize_file. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2025-4392. The attack can be initiated remotely. There is no exploit available.

CVE-2025-4392 | Shared Files Plugin up to 1.7.48 on WordPress sanitize_file cross site scripting

Post correlati

CVE-2024-11233 | PHP up to 8.1.30/8.2.25/8.3.13 convert.quoted-printable-decode Filter heap-based overflow (GHSA-r977-prxv-hc43)

CVE-2024-26668 | Linux Kernel up to 5.15.148/6.1.75/6.6.14/6.7.2 nft_limit integer overflow

CVE-2024-9136 | Huawei HarmonyOS/EMUI App Multiplier Module permission

CVE-2025-26363 | Nozomi Q-Free MaxTime up to 2.11.0 HTTP routes.lua missing authentication