CVE-2025-15020 | Gotham Block Extra Light Plugin up to 1.5.0 on WordPress Shortcode ghostban path traversal

A vulnerability identified as critical has been detected in Gotham Block Extra Light Plugin up to 1.5.0 on WordPress. This affects the function ghostban of the component Shortcode Handler. Performing a manipulation results in path traversal.

This vulnerability is identified as CVE-2025-15020. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More