2 matches found
CVE-2025-8213
CVE-2025-8213 concerns the NinjaScanner plugin for WordPress. The issue is an authenticated arbitrary file deletion vulnerability caused by insufficient file path validation in the nscan_ajax_quarantine and nscan_quarantine_select functions. It affects all versions up to and including 3.2.5, and ...
CVE-2025-8213 NinjaScanner – Virus & Malware scan <= 3.2.5 - Authenticated (Administrator+) Arbitrary File Deletion
The NinjaScanner – Virus & Malware scan plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'nscanajaxquarantine' and 'nscanquarantineselect' functions in all versions up to, and including, 3.2.5. This makes it possible for authenticated...