Lucene search
K

4 matches found

Circl
Circl
added 2025/07/02 9:17 a.m.7 views

CVE-2025-5014

creationtimestamp| type| source ---|---|--- 2025-07-02 09:17:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsxuxc2bl32r...

8.8CVSS7.3AI score0.00659EPSS
Exploits0References1
NVD
NVD
added 2025/07/02 4:15 a.m.6 views

CVE-2025-5014

The Home Villas | Real Estate WordPress Theme theme for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'wpremcswidgetfiledelete' function in all versions up to, and including, 2.8. This makes it possible for authenticated attackers, with...

8.8CVSS0.00659EPSS
Exploits0References2
CVE
CVE
added 2025/07/02 3:47 a.m.23 views

CVE-2025-5014

CVE-2025-5014 (Home Villas real estate WordPress theme) affects versions up to 2.8, with a vulnerability in the wp_rem_cs_widget_file_delete function that allows an authenticated attacker with Subscriber+ privileges to delete arbitrary files on the server due to insufficient file path validation....

8.8CVSS7.7AI score0.00659EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/07/01 12:0 a.m.8 views

WordPress Home Villas Theme <= 2.8 is vulnerable to Arbitrary File Deletion

Software Home Villas Type Theme Vulnerable versions = 2.8 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Deletion CVE CVE-2025-5014 Patch priority High CVSS severity High 7.7 Developer Claim ownership PSID cba250cec63a Credits Thái An Required privilege Subscriber Published...

8.8CVSS6.8AI score0.00659EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder