ГлавнаяУязвимости → CVE-2025-10916
9.1критическая

CVE-2025-10916

Описание

The FormGent WordPress plugin before 1.0.4 is vulnerable to arbitrary file deletion due to insufficient file path validation. This makes it possible for unauthenticated attackers to delete arbitrary files on the server.

CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Источники
https://wpscan.com/vulnerability/81c23998-1abb-495f-890a-79624a4cab9a/https://wpscan.com/vulnerability/81c23998-1abb-495f-890a-79624a4cab9a/