exploitDog

CVE-2025-39544

Опубликовано: 16 апр. 2025

Источник: nvd

CVSS3: 7.4

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi WP Tools allows Path Traversal. This issue affects WP Tools: from n/a through 5.18.

Ссылки

https://patchstack.com/database/wordpress/plugin/wptools/vulnerability/wordpress-wp-tools-plugin-5-18-csrf-to-arbitrary-file-deletion-vulnerability?_s_id=cve

EPSS

Процентиль: 7%

0.00026

Низкий

7.4 High

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-84v5-fhgf-rr93

CVSS3: 7.4

github

10 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi WP Tools allows Path Traversal. This issue affects WP Tools: from n/a through 5.18.

EPSS

Процентиль: 7%

0.00026

Низкий

7.4 High

CVSS3

Дефекты

CWE-352