CVE-2025-5058 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress set_image unrestricted upload

Inserito da Angelo Barbosa | Mag 23, 2025 | CVE

A vulnerability classified as critical has been found in Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress. Affected is the function set_image. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-5058. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-5058 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress set_image unrestricted upload

Post correlati

CVE-2024-35727 | actpro Extra Product Options for WooCommerce Plugin up to 3.0.6 on WordPress authorization

CVE-2024-28117 | grav up to 1.7.44 isDangerousFunction code injection

CVE-2021-47327 | Linux Kernel up to 5.4.133/5.10.51/5.12.18/5.13.3 arm_smmu_rpm_get memory leak

CVE-2024-44160 | Apple macOS up to 13.6/14.6 Texture buffer overflow