exploitDog

CVE-2025-10723

Опубликовано: 24 окт. 2025

Источник: nvd

CVSS3: 2.7

EPSS Низкий

Описание

The PixelYourSite WordPress plugin before 11.1.2 does not validate some URL parameters before using them to generate paths passed to function/s, allowing any admins to perform LFI attacks

Ссылки

https://wpscan.com/vulnerability/88a99f9d-dc7f-4c04-8734-77295c8656bf/

EPSS

Процентиль: 17%

0.00053

Низкий

2.7 Low

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-259w-3jff-442h

CVSS3: 2.7

github

4 месяца назад

The PixelYourSite WordPress plugin before 11.1.2 does not validate some URL parameters before using them to generate paths passed to function/s, allowing any admins to perform LFI attacks

EPSS

Процентиль: 17%

0.00053

Низкий

2.7 Low

CVSS3

Дефекты

CWE-22