CVE-2025-7518 | RSFirewall Plugin up to 1.1.42 on WordPress get_local_filename path traversal

Inserito da Angelo Barbosa | Lug 12, 2025 | CVE

A vulnerability was found in RSFirewall Plugin up to 1.1.42 on WordPress. It has been declared as critical. Affected by this vulnerability is the function get_local_filename. The manipulation leads to path traversal.

This vulnerability is known as CVE-2025-7518. The attack can be launched remotely. There is no exploit available.

CVE-2025-7518 | RSFirewall Plugin up to 1.1.42 on WordPress get_local_filename path traversal

Post correlati

CVE-2023-43017 | IBM Security Verify Access Appliance up to 10.0.6.1 Configuration File certificate validation (XFDB-266155)

CVE-2024-29810 | 10Web PhotoGallery Plugin up to 1.8.21 on WordPress admin-ajax.php thumb_url cross site scripting

CVE-2024-52430 | Lis Video Gallery Plugin up to 0.2.1 on WordPress deserialization

CVE-2025-53500 | MassEditRegex Extension up to 1.39.12/1.42.6/1.43.1 on Mediawiki cross site scripting