CVE-2025-52805 | VaultDweller Leyka Plugin up to 3.31.9 on WordPress path traversal

July 4, 2025 Yanac

A vulnerability classified as problematic was found in VaultDweller Leyka Plugin up to 3.31.9 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to path traversal: ‘…/…//’.

This vulnerability is known as CVE-2025-52805. The attack can be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-52718 | Bearsthemes Alone Plugin up to 7.8.2 on WordPress code injection
CVE-2025-49302 | Scott Paterson Easy Stripe Plugin up to 1.1 on WordPress code injection