6 matches found
CVE-2025-66120
CVE-2025-66120 corresponds to a Missing Authorization/Broken Access Control vulnerability in the WordPress CatFolders plugin (versions up to and including 2.5.3). The issue affects CatFolders – WordPress Media Library Folders & Categories, with a CVSS v3.1 base score of 5.3 (Medium) and an attack...
CVE-2025-66120 WordPress CatFolders plugin <= 2.5.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in CatFolders CatFolders catfolders allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CatFolders: from n/a through = 2.5.3...
Exploit for CVE-2025-9776
CVE-2025-9776 — CatFolders WordPress Plugin: Authenticated SQL...
CVE-2025-9776
The CatFolders – Tame Your WordPress Media Library by Category plugin for WordPress is vulnerable to time-based SQL Injection via the CSV Import contents in all versions up to, and including, 2.5.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
CVE-2025-9776
The CatFolders – Tame Your WordPress Media Library by Category plugin for WordPress is vulnerable to time-based SQL Injection via the CSV Import contents in all versions up to, and including, 2.5.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
CVE-2025-9776
CVE-2025-9776 – CatFolders WordPress plugin (versions