3 matches found
CVE-2025-5927
creationtimestamp| type| source ---|---|--- 2025-06-25 09:47:43+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19432 2025-06-25 14:39:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsgtov5mss2s...
CVE-2025-5927 Everest Forms (Pro) <= 1.9.4 - Unauthenticated Path Traversal to Arbitrary File Deletion
The Everest Forms Pro plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteentryfiles function in all versions up to, and including, 1.9.4. This makes it possible for unauthenticated attackers to delete arbitrary files on the server,...
WordPress Everest Forms (Pro) plugin <= 1.9.4 - Unauthenticated Path Traversal to Arbitrary File Deletion vulnerability
Unauthenticated Path Traversal to Arbitrary File Deletion vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin Everest Forms Pro versions = 1.9.4...