4 matches found
CVE-2023-6925
creationtimestamp| type| source ---|---|--- 2024-02-12 07:02:31+00:00| seen| https://t.me/ctinow/182913 2025-03-19 15:49:02+00:00| seen| MISP/2bb5c40c-5583-4a30-bc62-81e5a7af21a7...
CVE-2023-6925 Unlimited Addons for WPBakery Page Builder <= 1.0.42 - Authenticated (Editor+) Arbitrary File Upload
The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile' function in versions up to, and including, 1.0.42. This makes it possible for authenticated attackers with a role that the...
CVE-2023-6925
The CVE-2023-6925 entry concerns the WordPress plugin Unlimited Addons for WPBakery Page Builder . The vulnerability is an arbitrary file upload flaw caused by insufficient file type validation in the importZipFile function, affecting versions up to and including 1.0.42 . This allows authenticate...
WordPress Unlimited Addons for WPBakery Page Builder Plugin <= 1.0.42 is vulnerable to Arbitrary File Upload
Software Unlimited Addons for WPBakery Page Builder Type Plugin Vulnerable versions = 1.0.42 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2023-6925 Patch priority Low CVSS severity Low 8 Developer Claim ownership PSID 9599a24cfc17 Credits István Márton...