CVE-2025-1128 | wpeverest Everest Forms Plugin up to 3.0.9.4 on WordPress Path Validation EVF_Form_Fields_Upload format unrestricted upload

Çağlar Arlı - 1 Views

CVE-2025-1128 | wpeverest Everest Forms Plugin up to 3.0.9.4 on WordPress Path Validation EVF_Form_Fields_Upload format unrestricted upload

A vulnerability, which was classified as critical, has been found in wpeverest Everest Forms Plugin up to 3.0.9.4 on WordPress. Affected by this issue is the function format of the file EVF_Form_Fields_Upload of the component Path Validation Handler. The manipulation leads to unrestricted upload. This vulnerability is handled as CVE-2025-1128. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

P	S	Ç	P	C	C	P
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28

Annanowa

CVE-2025-1128 | wpeverest Everest Forms Plugin up to 3.0.9.4 on WordPress Path Validation EVF_Form_Fields_Upload format unrestricted upload

CVE-2025-1128 | wpeverest Everest Forms Plugin up to 3.0.9.4 on WordPress Path Validation EVF_Form_Fields_Upload format unrestricted upload

Son Yazılar

Son Yorumlar