CVE-2025-58996 | Advanced Settings Plugin up to 3.1.1 on WordPress Setting unrestricted upload

Inserito da Angelo Barbosa | Set 30, 2025 | CVE

A vulnerability classified as critical has been found in Advanced Settings Plugin up to 3.1.1 on WordPress. The affected element is an unknown function of the component Setting Handler. Performing manipulation results in unrestricted upload.

This vulnerability is cataloged as CVE-2025-58996. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-58996 | Advanced Settings Plugin up to 3.1.1 on WordPress Setting unrestricted upload

Post correlati

VDB-263811 | Panel.Amadey.d.c Login.php l/p cross site scripting

CVE-2025-36351 | IBM License Metric Tool up to 9.2.40 REST API Interface access control

CVE-2024-12079 | ECOVACS Robot Lawn Mower/Robot Vacuum Anti-Theft PIN cleartext storage

CVE-2024-1189 | AMPPS 2.7 Encryption Passphrase denial of service