9 matches found
CVE-2025-8385
The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5. This is due to insufficient input validation in the zfgetfilebyurl function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read arbitrary...
EUVD-2025-37309
The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5. This is due to insufficient input validation in the zfgetfilebyurl function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read arbitrary...
CVE-2025-8385
The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5. This is due to insufficient input validation in the zfgetfilebyurl function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read arbitrary...
CVE-2025-8385 Zombify <= 1.7.5 - Authenticated (Subscriber+) Path Traversal to Arbitrary File Read
The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5. This is due to insufficient input validation in the zfgetfilebyurl function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read arbitrary...
CVE-2025-8385
CVE-2025-8385 affects the WordPress Zombify plugin (versions
CVE-2025-8385 Zombify <= 1.7.5 - Authenticated (Subscriber+) Path Traversal to Arbitrary File Read
The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5. This is due to insufficient input validation in the zfgetfilebyurl function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read arbitrary...
WordPress Zombify plugin <= 1.7.5 - Authenticated (Subscriber+) Path Traversal to Arbitrary File Read vulnerability
Authenticated Subscriber+ Path Traversal to Arbitrary File Read vulnerability discovered by Tonn in WordPress Plugin Zombify versions = 1.7.5...
PT-2025-44588
Name of the Vulnerable Software and Affected Versions WordPress Zombify plugin versions up to and including 1.7.5 Description The Zombify plugin for WordPress is susceptible to a Path Traversal issue. This is caused by inadequate input validation within the zf get file by url function...
WordPress plugin Zombify 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A path travers...