CVEs-PoC/2025/CVE-2025-4190.md at 4e4e30233e70832d643d5c6ab6fbfa6f130b4bb1

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-29 20:39:28 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (for example in multisite setup)

POC

Reference

https://wpscan.com/vulnerability/e525ece5-6e03-4aee-bf5b-6ae0b961f027/

Github

https://github.com/ARPSyndicate/cve-scores
https://github.com/GadaLuBau1337/CVE-2025-4190
https://github.com/Nxploited/CVE-2025-4190
https://github.com/PuddinCat/GithubRepoSpider
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/plzheheplztrying/cve_monitor

1.0 KiB Raw Blame History

CVE-2025-4190

Description

POC

Reference

Github

1.0 KiB

Raw Blame History