CVE-2025-5818 | Featured Image Plus Plugin up to 1.6.4 on WordPress fip_get_image_options server-side request forgery

Inserito da Angelo Barbosa | Lug 22, 2025 | CVE

A vulnerability classified as critical has been found in Featured Image Plus Plugin up to 1.6.4 on WordPress. Affected is the function fip_get_image_options. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2025-5818. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-5818 | Featured Image Plus Plugin up to 1.6.4 on WordPress fip_get_image_options server-side request forgery

Post correlati

CVE-2024-56414 | Acronis Cyber Protect 16 up to 39168 Web Installer weak hash

CVE-2025-20172 | Cisco IOS/IOS XR/IOS XE SNMP Subsystem denial of service (cisco-sa-snmp-dos-sdxnSUcW)

CVE-2024-23591 | Lenovo ThinkSystem SR670 V2 prior U8E126I-2.20 Intel Boot Guard/SPS security product released in non-release configuration

CVE-2024-27499 | Bagisto 1.5.1 Product Review Option cross site scripting