2 matches found
CVE-2025-13070
The CSV to SortTable WordPress plugin through 4.2 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as contributor to perform LFI attacks...
CVE-2025-13070
creationtimestamp| type| source ---|---|--- 2025-12-09 08:02:04+00:00| seen| https://gist.github.com/Darkcrai86/baacc8ad5563c97f761a4ef6885de84e 2025-12-09 09:28:24+00:00| seen| https://gist.github.com/Darkcrai86/96e109b213679104d177602e4c03bfe1...