Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/07/17 2:24 a.m.13 views

CVE-2025-7712 Madara - Core <= 2.2.3 - Unauthenticated Arbitrary File Deletion

The Madara - Core plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpmangadeletezip function in all versions up to, and including, 2.2.3. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, whic...

9.1CVSS0.00817EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/17 12:0 a.m.5 views

PT-2025-29899 · WordPress · Madara - Core

Name of the Vulnerable Software and Affected Versions: Madara - Core plugin for WordPress versions prior to 2.2.3 Description: The Madara - Core plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wp manga delete zip function. This allows...

9.1CVSS7.6AI score0.00817EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/07/17 12:0 a.m.3 views

WordPress plugin Madara - Core 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A path traversal...

9.1CVSS7.8AI score0.00817EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2025/05/05 3:28 a.m.391 views

Exploit for CVE-2025-4524

CVE-2025-4524 - Unauthenticated madara-core Wordpress theme LF...

9.8CVSS9.5AI score0.09094EPSS
Exploits5
Rows per page
Query Builder