BuddyPress Xprofile Custom Fields Type <=2.6.3 Path Traversal Arbitrary File Deletion

www.vulncheck.com 2026-04-30查看中文 →

Referenced CVEs: CVE-2018-25308 · 8.8

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from www.vulncheck.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

WordPress Plugin Filterable Portfolio Gallery 1.0 Stored XSS Vulnerability (CVE-7929) 2026-05-10 WordPress Plugin Survey & Poll 1.5.7.3 Unauthenticated SQL Injection Vulnerability 2026-05-10 Stored XSS in WordPress Plugin Ultimate Product Catalog <=5.8.2 via price parameter (CVE-79 VE-79) 2026-05-10 WordPress Plugin AccessPress Social Icons 1.8.2 Stored XSS Vulnerability Advisory 2026-05-10 WordPress Picture Gallery 1.4.2 Stored XSS via Edit Content URL 2026-05-10

Offline Archive

Offline screenshot & PDF are Pro-exclusive