CVE-2025-13972 | WatchTowerHQ Plugin up to 3.15.0 on WordPress handle_big_object_download_request wht_download_big_object_origin path traversal

A vulnerability was found in WatchTowerHQ Plugin up to 3.15.0 on WordPress. It has been classified as problematic. Affected by this vulnerability is the function handle_big_object_download_request. Performing manipulation of the argument wht_download_big_object_origin results in path traversal.

This vulnerability is reported as CVE-2025-13972. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More