CVE-2025-14045 | URL Media Uploader Plugin up to 1.0.1 on WordPress File Upload url_media_uploader_url_upload_ajax_handler authorization

December 11, 2025 Yanac

A vulnerability was found in URL Media Uploader Plugin up to 1.0.1 on WordPress. It has been declared as critical. Affected by this issue is the function url_media_uploader_url_upload_ajax_handler of the component File Upload. Executing manipulation can lead to missing authorization.

This vulnerability appears as CVE-2025-14045. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More