CVE-2025-67924 | zozothemes Corpkit Plugin up to 2.0 on WordPress unrestricted upload

January 8, 2026 Yanac

A vulnerability identified as critical has been detected in zozothemes Corpkit Plugin up to 2.0 on WordPress. This issue affects some unknown processing. This manipulation causes unrestricted upload.

The identification of this vulnerability is CVE-2025-67924. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-67926 | Shahjahan Jewel Fluent Support Plugin up to 1.10.4 on WordPress authorization
CVE-2025-67921 | VanKarWai Lobo Plugin up to 2.8.6 on WordPress sql injection