CVE-2025-6058 | WPBookit Plugin up to 1.0.4 on WordPress image_upload_handle unrestricted upload

July 11, 2025 Yanac

A vulnerability, which was classified as critical, was found in WPBookit Plugin up to 1.0.4 on WordPress. Affected is the function image_upload_handle. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-6058. It is possible to launch the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-1313 | Nokri Plugin up to 1.6.3 on WordPress privilege escalation
CVE-2025-53641 | gitroomhq postiz-app up to 1.62.2 Outbound Request server-side request forgery (GHSA-48c8-25jq-m55f)