6 matches found
Exploit for CVE-2025-26892
CVE-2025-26892 – WordPress Celestial Aura Theme = 2.2 Arbitra...
CVE-2025-26892
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows Using Malicious Files.This issue affects Celestial Aura: from n/a through 2.2...
CVE-2025-26892
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows Using Malicious Files.This issue affects Celestial Aura: from n/a through 2.2...
CVE-2025-26892
The CVE-2025-26892 entry concerns the WordPress Celestial Aura plugin (versions n/a through 2.2). Concretely, a vulnerability exists in an unrestricted upload of files with dangerous types within the plugin’s admin panel, enabling an attacker to upload arbitrary PHP files. Documented impact inclu...
CVE-2025-26892 WordPress Celestial Aura plugin <= 2.2 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows Using Malicious Files.This issue affects Celestial Aura: from n/a through 2.2...
WordPress Celestial Aura Theme <= 2.2 is vulnerable to Arbitrary File Upload
Software Celestial Aura Type Theme Vulnerable versions = 2.2 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Upload CVE CVE-2025-26892 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID 6836679a2db2 Credits stealthcopter Required privilege...