CVE-2025-6058 | WPBookit Plugin up to 1.0.4 on WordPress image_upload_handle unrestricted upload

Inserito da Angelo Barbosa | Lug 11, 2025 | CVE

A vulnerability, which was classified as critical, was found in WPBookit Plugin up to 1.0.4 on WordPress. Affected is the function image_upload_handle. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-6058. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-6058 | WPBookit Plugin up to 1.0.4 on WordPress image_upload_handle unrestricted upload

Post correlati

CVE-2018-9472 | Google Android 7/8/8.1 xmlmemory.c xmlMemStrdupLoc out-of-bounds write

CVE-2024-1764 | Devolutions Server up to 2023.3.14.0 Just-in-Time Elevation Module privileges management (DEVO-2024-0002)

CVE-2024-5382 | Master Addons Plugin up to 2.0.6.1 on WordPress Template authorization

CVE-2023-6488 | WP Shortcodes Plugin up to 7.0.0 on WordPress cross site scripting