CVE-2025-67910 | Contentstudio Plugin up to 1.3.7 on WordPress unrestricted upload

January 8, 2026 Yanac

A vulnerability was found in Contentstudio Plugin up to 1.3.7 on WordPress and classified as critical. Affected is an unknown function. Such manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-67910. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-67913 | Aruba.it Dev Aruba HiSpeed Cache Plugin up to 3.0.3 on WordPress authorization
CVE-2025-23993 | RiceTheme Felan Framework Plugin up to 1.1.3 on WordPress sql injection