EUVD-2025-19896

Malicious code in bioql PyPI...

CVE-2025-23968

Unrestricted Upload of File with Dangerous Type vulnerability in WebFactory AiBud WP aibuddy-openai-chatgpt allows Upload a Web Shell to a Web Server.This issue affects AiBud WP: from n/a through = 1.9...

CVE-2025-23968 WordPress AiBud WP plugin <= 1.9 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in WebFactory AiBud WP aibuddy-openai-chatgpt allows Upload a Web Shell to a Web Server.This issue affects AiBud WP: from n/a through = 1.9...

CVE-2025-23968

CVE-2025-23968 affects the WordPress AiBud WP plugin (AiBud OpenAI ChatGPT integration) versions up to 1.8.5. A REST API route at /wp-json/ai-buddy/v1/wp/attachments permits uploading attachments; the renaming logic (via the filename parameter) can change the uploaded file’s name to a PHP extensi...

PT-2025-27822 · Unknown · Wpcenter Aibud Wp

Name of the Vulnerable Software and Affected Versions: WPCenter AiBud WP versions 1.8.5 and earlier Description: The issue affects WPCenter AiBud WP, allowing an unrestricted upload of a file with a dangerous type, which enables uploading a web shell to a web server. Recommendations: For versions...