6 matches found
Exploit for CVE-2025-26892
CVE-2025-26892 – WordPress Celestial Aura Theme = 2.2 Arbitra...
CVE-2025-26892
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows Using Malicious Files.This issue affects Celestial Aura: from n/a through 2.2...
CVE-2025-26892
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows Using Malicious Files.This issue affects Celestial Aura: from n/a through 2.2...
CVE-2025-26892 WordPress Celestial Aura plugin <= 2.2 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows Using Malicious Files.This issue affects Celestial Aura: from n/a through 2.2...
CVE-2025-26892
The CVE-2025-26892 entry concerns the WordPress Celestial Aura plugin (versions n/a through 2.2). Concretely, a vulnerability exists in an unrestricted upload of files with dangerous types within the plugin’s admin panel, enabling an attacker to upload arbitrary PHP files. Documented impact inclu...
WordPress Celestial Aura Theme <= 2.2 is vulnerable to Arbitrary File Upload
Software Celestial Aura Type Theme Vulnerable versions = 2.2 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Upload CVE CVE-2025-26892 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID 6836679a2db2 Credits stealthcopter Required privilege...