Lucene search
K

8 matches found

Patchstack
Patchstack
added 2025/05/30 9:47 p.m.17 views

WordPress CSV Mass Importer plugin <= 1.2 - Admin+ Arbitrary File Upload vulnerability

Admin+ Arbitrary File Upload vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin CSV Mass Importer versions = 1.2...

7.2CVSS8.3AI score0.00489EPSS
Exploits3References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/19 6:9 a.m.13 views

CVE-2025-4190

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

7.2CVSS6.8AI score0.00489EPSS
Exploits3References1
NVD
NVD
added 2025/05/17 6:15 a.m.43 views

CVE-2025-4190

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

7.2CVSS0.00489EPSS
Exploits3References1
CVE
CVE
added 2025/05/17 6:0 a.m.60 views

CVE-2025-4190

CVE-2025-4190 affects the WordPress plugin CSV Mass Importer (v ≤ 1.2). The issue is improper validation of uploaded files, allowing high-privilege users (e.g., admins) to upload arbitrary files on the server (notably in multisite setups). Several sources confirm an admin+ arbitrary file upload v...

7.2CVSS7AI score0.00489EPSS
Exploits3References1Affected Software1
Cvelist
Cvelist
added 2025/05/17 6:0 a.m.47 views

CVE-2025-4190 CSV Mass Importer <= 1.2 - Admin+ Arbitrary File Upload

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

0.00489EPSS
Exploits3References1
GithubExploit
GithubExploit
added 2025/05/15 3:51 p.m.305 views

Exploit for CVE-2025-4190

CVE-2025-4190 — WordPress CSV Mass Importer ≤ 1.2 Arbitrary Fi...

7.2CVSS8AI score0.00489EPSS
Exploits3
Circl
Circl
added 2025/05/07 5:0 p.m.36 views

CVE-2025-4190

creationtimestamp| type| source ---|---|--- 2025-05-07 17:00:13+00:00| published-proof-of-concept| Telegram/r84uk1c1f1koqzztiTdxByQ9BLtYAaDiWUWNZ6l8-95JYw 2025-05-17 17:01:22+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpezaghntdj2...

7.2CVSS8.7AI score0.00489EPSS
Exploits3References1
GithubExploit
GithubExploit
added 2025/05/07 10:56 a.m.496 views

Exploit for CVE-2025-4190

CVE-2025-4190 — WordPress CSV Mass Importer ≤ 1.2 Arbitrary Fi...

7.2CVSS8AI score0.00489EPSS
Exploits3
Rows per page
Query Builder