CVE-2025-9762 | Post by Email Plugin up to 1.0.4b on WordPress save_attachments unrestricted upload

September 29, 2025 Yanac

A vulnerability identified as critical has been detected in Post by Email Plugin up to 1.0.4b on WordPress. This affects the function save_attachments. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-9762. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-11163 | SmartCrawl SEO Checker, Analyzer & Optimizer Plugin Setting update_submodule authorization
CVE-2025-8559 | All in One Music Player Plugin up to 1.3.1 on WordPress theme path traversal