CVE-2025-0394 | Groundhogg Plugin up to 3.7.3.5 on WordPress gh_big_file_upload unrestricted upload

CVE-2025-0394 | Groundhogg Plugin up to 3.7.3.5 on WordPress gh_big_file_upload unrestricted upload

A vulnerability, which was classified as critical, was found in Groundhogg Plugin up to 3.7.3.5 on WordPress. Affected is the function gh_big_file_upload. The manipulation leads to unrestricted upload. This vulnerability is traded as CVE-2025-0394. It is possible to launch the attack remotely. There is no exploit available.