CVE ID :CVE-2018-25335
Published : May 17, 2026, 1:16 p.m. | 5 hours, 42 minutes ago
Description :WordPress Plugin Peugeot Music 1.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to the upload.php endpoint. Attackers can upload files with arbitrary extensions by manipulating the ‘name’ parameter to execute code from the uploads directory.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more… To Read More Visit Read More