Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/17 1:28 p.m.11 views

CVE-2025-0822

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.5.2 via the fileID Parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contai...

6.5CVSS9.1AI score0.00589EPSS
Exploits0References1
Circl
Circl
added 2025/02/15 12:51 p.m.10 views

CVE-2025-0822

creationtimestamp| type| source ---|---|--- 2025-02-15 12:51:42+00:00| seen| https://infosec.exchange/users/cve/statuses/114007991998567307 2025-02-15 13:15:39+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li7sf7m6nn2o 2025-02-15 15:10:48+00:00| seen|...

6.5CVSS8.7AI score0.00589EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/02/15 12:43 p.m.10 views

CVE-2025-0822 Bit Assist <= 1.5.2 - Path Traversal to Authenticated (Subscriber+) Arbitrary File Read via fileID Parameter

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.5.2 via the fileID Parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contai...

6.5CVSS6.2AI score0.00589EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/15 12:43 p.m.14 views

CVE-2025-0822 Bit Assist <= 1.5.2 - Path Traversal to Authenticated (Subscriber+) Arbitrary File Read via fileID Parameter

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.5.2 via the fileID Parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contai...

6.5CVSS0.00589EPSS
Exploits0References4
Rows per page
Query Builder