CVE-2025-48157 | Formality Plugin up to 1.5.9 on WordPress file inclusion

Inserito da Angelo Barbosa | Lug 21, 2025 | CVE

A vulnerability classified as critical was found in Formality Plugin up to 1.5.9 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to file inclusion.

This vulnerability is known as CVE-2025-48157. The attack can be launched remotely. There is no exploit available.

CVE-2025-48157 | Formality Plugin up to 1.5.9 on WordPress file inclusion

Post correlati

CVE-2024-34022 | Intel Thunderbolt Share software prior 1.0.49.9 access control (intel-sa-01204)

CVE-2023-41706 | Open-Xchange OX App Suite up to 7.6.3-rev71/7.10.6-rev55/8.19 Drive Search resource consumption

CVE-2025-44958 | Ruckus Virtual SmartZone/Network Director storing passwords in a recoverable format

CVE-2024-0616 | Passster Plugin up to 4.2.6.2 on WordPress authorization