Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Over 50k WordPress Sites at Takeover Risk Via Vulnerable Plugin
Malware and Vulnerabilities
April 22, 2025
SecurityOnline
Tracked as CVE-2025-3616 and carrying a CVSS score of 8.8, this flaw allows authenticated users — even those with mere subscriber-level access — to upload arbitrary files, including malicious PHP scripts, and execute them remotely.
Read More
Wordpress Sites
Greenshift plugin
Greenshift
Arbitrary File Upload
CVE-2025-3616
Publisher
Previous
Researchers claim breakthrough in fight against AI’s fr ...
Innovation and Research
Next
New Malware Mimics Cisco Webex to Target Users in-the-W ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/bfa6_shutterstock_2380464091.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/7512_shutterstock_1405837688.jpg)
