CVE-2026-25397

Published: Mar 25, 2026 Last Modified: Mar 25, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

Path Traversal: '.../...//' vulnerability in Snowray Software File Uploader for WooCommerce file-uploader-for-woocommerce allows Path Traversal.This issue affects File Uploader for WooCommerce: from n/a through <= 1.0.4.

Path Traversal: '.../...//'

Incomplete

Abstraction: Variant Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Integrity

Potential Impacts:

Read Files Or Directories Modify Files Or Directories Bypass Protection Mechanism

Applicable Platforms

All platforms may be affected

View CWE Details

https://patchstack.com/database/Wordpress/Plugin/file-uploa…

https://patchstack.com/database/Wordpress/Plugin/file-uploader-for-woocommerce/…

CVE-2026-25397

Description

Path Traversal: '.../...//'

Common Consequences

Applicable Platforms

Iscriviti alla newsletter