Lucene search
K

4 matches found

Patchstack
Patchstack
added 2025/07/18 10:13 a.m.18 views

WordPress Malcure Malware Scanner plugin <= 16.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary File Read vulnerability discovered by Arkadiusz Hydzik in WordPress Plugin Malcure Malware Scanner versions = 16.8...

6.5CVSS6.7AI score0.00309EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/07/18 9:34 a.m.17 views

CVE-2025-7772

creationtimestamp| type| source ---|---|--- 2025-07-18 09:34:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lua5fenqtf2t...

6.5CVSS4.8AI score0.00309EPSS
Exploits0References1
NVD
NVD
added 2025/07/18 7:15 a.m.5 views

CVE-2025-7772

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmrinspectfile function due to a missing capability check. This makes it possible for authenticated attackers, with...

6.5CVSS0.00309EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/18 6:45 a.m.9 views

CVE-2025-7772 Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal <= 16.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read

The Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmrinspectfile function due to a missing capability check. This makes it possible for authenticated attackers, with...

6.5CVSS0.00309EPSS
Exploits0References2
Rows per page
Query Builder