CVE-2025-10000 | Qyrr Plugin up to 2.0.7 on WordPress blob_to_file unrestricted upload

September 29, 2025 Yanac

A vulnerability was found in Qyrr Plugin up to 2.0.7 on WordPress. It has been classified as critical. This issue affects the function blob_to_file. This manipulation causes unrestricted upload.

This vulnerability is registered as CVE-2025-10000. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-9991 | Tiny Bootstrap Elements Light Plugin up to 4.3.34 on WordPress Language file inclusion
CVE-2025-8625 | Copypress Rest API Plugin 1.1/1.2 on WordPress copyreap_handle_image Remote Code Execution