VYPR

Image Upload For Bbpress

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-2006HigMar 29, 2025
    risk 0.57cvss 8.8epss 0.01

    The Inline Image Upload for BBPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file extension validation in the file uploading functionality in all versions up to, and including, 1.1.19. This makes it possible for authenticated attackers, with…