CVE-2025-12966 | All-in-One Video Gallery Plugin up to 4.5.4/4.5.7 on WordPress resolve_import_directory unrestricted upload

A vulnerability was found in All-in-One Video Gallery Plugin up to 4.5.4/4.5.7 on WordPress and classified as critical. Affected by this vulnerability is the function resolve_import_directory. Executing manipulation can lead to unrestricted upload.

This vulnerability is handled as CVE-2025-12966. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More