CVE-2023-6925P2HIGHCVSS 7.2ExploitedRansomware≤ 1.0.422024-02-05
CVE-2023-6925 [HIGH] CWE-434 CVE-2023-6925: The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file
The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile' function in versions up to, and including, 1.0.42. This makes it possible for authenticated attackers with a role that the administrator previously granted access to the plugin (the de
nvd