CVE-2025-8385 | Zombify Plugin up to 1.7.5 on WordPress zf_get_file_by_url path traversal

Inserito da Angelo Barbosa | Ott 31, 2025 | CVE

A vulnerability classified as critical has been found in Zombify Plugin up to 1.7.5 on WordPress. Affected by this issue is the function zf_get_file_by_url. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2025-8385. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-8385 | Zombify Plugin up to 1.7.5 on WordPress zf_get_file_by_url path traversal

Post correlati

CVE-2024-22452 | Dell Display and Peripheral Manager up to 1.2 on macOS Installation access control (dsa-2024-056)

CVE-2024-42919 | eScan Management Console 14.0.1400.2281 acteScanAVReport access control

CVE-2024-10142 | code-projects Blood Bank System 1.0 /viewrequest.php cross site scripting

CVE-2024-0568 | Schneider Electric Harmony Control Relay RMNF22TB30 NFC improper authentication (SEVD-2024-044-02)