Lucene search
+L

5 matches found

NVD
NVD
added 2026/06/30 6:16 a.m.15 views

CVE-2026-11367

The PixMagix – WordPress Image Editor plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.2 via the moveimageonserver function. This makes it possible for authenticated attackers, with author-level access and above, to write files with...

6.5CVSS0.00541EPSS
Exploits0References4
CVE
CVE
added 2026/06/30 4:30 a.m.20 views

CVE-2026-11367

The PixMagix WordPress Image Editor plugin (versions up to 1.7.2) is affected by a Directory Traversal flaw in move_image_on_server, allowing authenticated users with author+ rights to write attacker-controlled files to arbitrary server paths via the unsanitized layers[].id parameter being concat...

6.5CVSS5.9AI score0.00541EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/30 4:30 a.m.7 views

EUVD-2026-40253

The PixMagix – WordPress Image Editor plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.2 via the moveimageonserver function. This makes it possible for authenticated attackers, with author-level access and above, to write files with...

6.5CVSS5.9AI score0.00541EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/22 6:23 p.m.3 views

CVE-2025-58232 WordPress Image Editor by Pixo Plugin <= 2.3.8 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ickata Image Editor by Pixo image-editor-by-pixo allows DOM-Based XSS.This issue affects Image Editor by Pixo: from n/a through = 2.3.8...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:23 p.m.9 views

CVE-2025-58232

CVE-2025-58232 affects Image Editor by Pixo (WordPress plugin). The entry documents a DOM/Stored XSS vector in the Editor component, arising from Improper Neutralization of Input During Web Page Generation. Affected version:

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
Rows per page
Query Builder