CVE-2025-8723
published 2025-08-19CVE-2025-8723: The Cloudflare Image Resizing plugin for WordPress is vulnerable to Remote Code Execution due to missing authentication and insufficient sanitization within…
PriorityP276critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
14.01%
96.1th percentile
The Cloudflare Image Resizing plugin for WordPress is vulnerable to Remote Code Execution due to missing authentication and insufficient sanitization within its hook_rest_pre_dispatch() method in all versions up to, and including, 1.5.6. This makes it possible for unauthenticated attackers to inject arbitrary PHP into the codebase, achieving remote code execution.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| better-auth | better-auth | >= 0 < 1.1.20 | 1.1.20 |
| mecanik | cloudflare_image_resizing_optimize_accelerate_your_images | <= 1.5.6 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-52w9-qfc2-5xq5: The Cloudflare Image Resizing plugin for WordPress is vulnerable to Remote Code Execution due to missing authentication and insufficient sanitization
ghsa_unreviewed·2025-08-19
CVE-2025-8723 [CRITICAL] CWE-94 GHSA-52w9-qfc2-5xq5: The Cloudflare Image Resizing plugin for WordPress is vulnerable to Remote Code Execution due to missing authentication and insufficient sanitization
The Cloudflare Image Resizing plugin for WordPress is vulnerable to Remote Code Execution due to missing authentication and insufficient sanitization within its hook_rest_pre_dispatch() method in all versions up to, and including, 1.5.6. This makes it possible for unauthenticated attackers to inject arbitrary PHP into the codebase, achieving remote code execution.
GHSA
Beter Auth has an Open Redirect via Scheme-Less Callback Parameter
ghsa·2025-02-24
CVE-2025-27143 [MEDIUM] CWE-601 Beter Auth has an Open Redirect via Scheme-Less Callback Parameter
Beter Auth has an Open Redirect via Scheme-Less Callback Parameter
### Summary
The application is vulnerable to an open redirect due to improper validation of the callbackURL parameter in the email verification endpoint and any other endpoint that accepts callback url. While the server blocks fully qualified URLs (e.g., https://evil.com), it incorrectly allows scheme-less URLs (e.g., //malicious-site.com). This results in the browser interpreting the URL as https://malicious-site.com, leading to unintended redirection.
bypass for : https://github.com/better-auth/better-auth/security/advisories/GHSA-8jhw-6pjj-8723
### Affected Versions
All versions prior to 1.1.19
### Details
The application’s email verification endpoint (/auth/verify-email) accepts a callbackURL parameter intended to r
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-08-19
Published