2 matches found
CVE-2025-6065
CVE-2025-6065 concerns the Image Resizer On The Fly WordPress plugin (all versions up to and including 1.1). The vulnerability arises from insufficient file path validation in the delete task, enabling unauthenticated attackers to delete arbitrary files (e.g., wp-config.php) and potentially enabl...
WordPress Image Resizer On The Fly plugin <= 1.1 - Unauthenticated Arbitrary File Deletion vulnerability
Unauthenticated Arbitrary File Deletion vulnerability discovered by theviper17y in WordPress Plugin Image Resizer On The Fly versions = 1.1...