CVE-2025-58996 | Advanced Settings Plugin up to 3.1.1 on WordPress Setting unrestricted upload

Inserito da Angelo Barbosa | Set 30, 2025 | CVE

A vulnerability classified as critical has been found in Advanced Settings Plugin up to 3.1.1 on WordPress. The affected element is an unknown function of the component Setting Handler. Performing manipulation results in unrestricted upload.

This vulnerability is cataloged as CVE-2025-58996. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-58996 | Advanced Settings Plugin up to 3.1.1 on WordPress Setting unrestricted upload

Post correlati

IBM CICS TX Standard cross-site request forgery (XFDB-266057)

CVE-2025-57087 | Tenda W30E 16.01.0.19 werlessAdvancedSet countryCode stack-based overflow

CVE-2024-25728 | ExpressVPN prior 12.73.0 on Windows Split Tunneling information disclosure

CVE-2024-22807 | Tormach xsTECH CNC Router 2.9.6 denial of service