CVE-2025-47549

High CVSS: 7.2

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic BEAF beaf-before-and-after-gallery allows Upload a Web Shell to a Web Server.This issue affects BEAF: from n/a through <= 4.6.10.

Vendor

Themefic

Product

Ultimate Before After Image Slider \& Gallery

CWE

CWE-434

Yayın Tarihi

2025-05-07 15:16:11

Güncelleme

2026-04-01 17:24:02

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-434 Ultimate Before After Image Slider \& Gallery HIGH Themefic 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/beaf-before-and-after-gallery/vulnerability/wordpress-beaf-4-6-10-arbitrary-file-upload-vulnerability?_s_id=cve

Benzer Kayıtlar

Medium

CVE-2025-6756

The Ultra Addons for Contact Form 7 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's U…

High

CVE-2025-6212

The Ultra Addons for Contact Form 7 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Database m…

High

CVE-2025-6220

The Ultra Addons for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to missing file typ…

High

CVE-2025-47550

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Instantio instantio allows Upload a Web Shell…

Unknown

CVE-2025-24650

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Tourfic tourfic allows Upload a Web Shell to a…