VYPR

CIBELES AI

by WordPress

CVEs (1)

  • CVE-2025-13595CriNov 25, 2025
    risk 0.57cvss 9.8epss 0.01

    The CIBELES AI plugin for WordPress is vulnerable to arbitrary file uploads due to missing capability check in the 'actualizador_git.php' file in all versions up to, and including, 1.10.8. This makes it possible for unauthenticated attackers to download arbitrary GitHub…