Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
WordPress Plugin Vulnerability Exposes 90,000 Sites to Attack
Malware and Vulnerabilities
February 20, 2025
Infosecurity Magazine
The flaw, discovered on January 6, allows attackers with contributor privileges or higher to upload malicious SVG files and execute remote code on vulnerable servers. The issue (CVE-2025-0366) has been given a CVSS score of 8.8 (High).
Read More
WordPress
Wordpress Sites
Jupiter X Core
Malicious SVG Files
Remote Code Execution (RCE)
Publisher
Previous
Snake Keylogger Targets Chrome, Edge, and Firefox Users ...
Malware and Vulnerabilities
Next
Two New OpenSSH Bugs Threaten Enterprise Security, Upti ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/4108_shutterstock_1236577720.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/f94f_shutterstock_1953394468.jpeg)
