CVE-2025-5831 | Droip Plugin up to 2.2.0 on WordPress make_google_font_offline unrestricted upload

July 24, 2025 Yanac

A vulnerability classified as critical was found in Droip Plugin up to 2.2.0 on WordPress. This vulnerability affects the function make_google_font_offline. The manipulation leads to unrestricted upload.

This vulnerability was named CVE-2025-5831. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-5835 | Droip Plugin up to 2.2.0 on WordPress Setting droip_post_apis authorization
CVE-2025-31952 | HCL iAutomate 6.5.1 session expiration (KB0122646 / EUVD-2025-22542)