Lucene search
K

7 matches found

Cvelist
Cvelist
added 2025/12/18 4:43 p.m.25 views

CVE-2025-64235 WordPress Tuturn plugin < 3.6 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AmentoTech Tuturn allows Path Traversal.This issue affects Tuturn: from n/a before 3.6...

6.5CVSS0.00302EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 4:43 p.m.2 views

CVE-2025-64235 WordPress Tuturn plugin < 3.6 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AmentoTech Tuturn allows Path Traversal.This issue affects Tuturn: from n/a before 3.6...

6.5CVSS6.5AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2025/12/18 4:43 p.m.7 views

CVE-2025-64235

The CVE-2025-64235 entry concerns the WordPress Tuturn plugin (versions before 3.6). The vulnerability is an improper limitation of a pathname (path traversal) that enables arbitrary file download via Tuturn. The Red Hat, CIRCL, NVD, and CVE lists corroborate the issue; Patchstack and CVELIST exp...

6.5CVSS5.2AI score0.00302EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/18 4:21 p.m.24 views

CVE-2025-64236 WordPress Tuturn plugin < 3.6 - Broken Authentication vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn allows Authentication Abuse.This issue affects Tuturn: from n/a before 3.6...

9.8CVSS0.00373EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 4:21 p.m.1 views

CVE-2025-64236 WordPress Tuturn plugin < 3.6 - Broken Authentication vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn allows Authentication Abuse.This issue affects Tuturn: from n/a before 3.6...

9.8CVSS6.6AI score0.00373EPSS
Exploits0References1
CVE
CVE
added 2025/12/18 4:21 p.m.13 views

CVE-2025-64236

CVE-2025-64236 affects the WordPress Tuturn plugin (versions before 3.6). The issue is a broken authentication vulnerability allowing authentication bypass via an alternate path or channel, enabling authentication abuse. Remediation: update to Tuturn 3.6 or later. If exploitation details are not ...

9.8CVSS5.2AI score0.00373EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.4 views

WordPress plugin Tuturn 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A path travers...

6.5CVSS6.6AI score0.00302EPSS
Exploits0References1
Rows per page
Query Builder