5 matches found
WordPress Litho Theme <= 3.0 is vulnerable to Arbitrary File Deletion
Software Litho Type Theme Vulnerable versions = 3.0 Fixed in 3.1 OWASP Top 10 A3: Injection Classification Arbitrary File Deletion CVE CVE-2025-49879 Patch priority High CVSS severity High 8.6 Developer Claim ownership PSID b5c6a3b3bdf8 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity...
CVE-2025-49879
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in themezaa Litho litho allows Path Traversal.This issue affects Litho: from n/a through = 3.0...
CVE-2025-49879
creationtimestamp| type| source ---|---|--- 2025-06-17 16:18:04+00:00| seen| Telegram/VViQQA05ZTfWMIgnP1njeoZjb6CaMk4xQkJ0gjICjaj4YA 2025-06-17 18:18:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrt47ix64n2k...
CVE-2025-49879
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in themezaa Litho litho allows Path Traversal.This issue affects Litho: from n/a through = 3.0...
CVE-2025-49879 WordPress Litho <= 3.0 - Arbitrary File Deletion Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in themezaa Litho allows Path Traversal. This issue affects Litho: from n/a through 3.0...