CVE-2025-66074 | Cozmoslabs WP Webhooks Plugin up to 3.3.8 on WordPress unrestricted upload

December 18, 2025 Yanac

A vulnerability labeled as critical has been found in Cozmoslabs WP Webhooks Plugin up to 3.3.8 on WordPress. The affected element is an unknown function. Executing manipulation can lead to unrestricted upload.

The identification of this vulnerability is CVE-2025-66074. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-66118 | BoldGrid Sprout Clients Plugin up to 3.2.1 on WordPress cross site scripting
CVE-2025-64217 | ThemeGoods Photography Plugin up to 7.7.2 on WordPress cross site scripting