4 matches found
CVE-2025-1093
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generateimage function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which m...
CVE-2025-1093
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generateimage function in all versions up to, and including, 1.3.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which m...
CVE-2025-1093
CVE-2025-1093 affects the AIHub WordPress Theme (AI Hub - Startup & Technology WordPress Theme). Unauthenticated arbitrary file upload is possible due to missing file-type validation in the generate_image function in all versions up to 1.3.7, potentially enabling remote code execution. Red Hat co...
PT-2025-17353 · WordPress · Aihub
Name of the Vulnerable Software and Affected Versions: AIHub theme for WordPress versions up to, and including, 1.3.7 Description: The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generate image function. This makes it possible for...