8 matches found
CVE-2025-6379
The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handlelivefn function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the...
CVE-2025-6379
The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handlelivefn function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the...
CVE-2025-6379 BeeTeam368 Extensions Pro <= 2.3.4 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Deletion
The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handlelivefn function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the...
CVE-2025-6379 BeeTeam368 Extensions Pro <= 2.3.4 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Deletion
The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handlelivefn function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the...
CVE-2025-6379
CVE-2025-6379 (BeeTeam368 Extensions Pro, WordPress) The vulnerability is a directory traversal in the BeeTeam368 Extensions Pro plugin (versions up to 2.3.4) via the handle_live_fn() function, allowing authenticated users with Subscriber+ access to access files outside the intended directory and...
PT-2025-27285 · WordPress · Beeteam368 Extensions Pro
Name of the Vulnerable Software and Affected Versions: BeeTeam368 Extensions Pro plugin for WordPress versions up to, and including, 2.3.4 Description: The issue allows authenticated attackers with Subscriber-level access and above to perform actions on files outside of the originally intended...
WordPress plugin BeeTeam368 Extensions Pro 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
WordPress BeeTeam368 Extensions Pro plugin <= 2.3.4 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Deletion vulnerability
Authenticated Subscriber+ Directory Traversal to Arbitrary File Deletion vulnerability discovered by Tonn in WordPress Plugin BeeTeam368 Extensions Pro versions = 2.3.4...