VYPR

Madara Core

by WordPress

CVEs (1)

  • CVE-2025-7712CriJul 17, 2025
    risk 0.60cvss 9.1epss 0.01

    The Madara - Core plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wp_manga_delete_zip() function in all versions up to, and including, 2.2.3. This makes it possible for unauthenticated attackers to delete arbitrary…