ГлавнаяУязвимости → CVE-2025-14829
9.1критическая

CVE-2025-14829

Описание

The E-xact | Hosted Payment | WordPress plugin through 2.0 is vulnerable to arbitrary file deletion due to insufficient file path validation. This makes it possible for unauthenticated attackers to delete arbitrary files on the server.

CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Источники
https://wpscan.com/vulnerability/872569bc-16fb-427f-accc-147f284137cd/