cleantalk
Vulnerabilities and Security Researches

Image License and Protection, CVE-2025-8047

CVE, Research URL

CVE-2025-8047

Home page URL

Security reports for Image License and Protection

Application

Image License and Protection

Published on
Aug 14, 2025
Research Description
The disable-right-click-powered-by-pixterme through v1.2 and pixter-image-digital-license thtough v1.0 WordPress plugins load a JavaScript file which has been compromised from an apparent abandoned S3 bucket. It can be used as a backdoor by those who control it, but it currently displays an alert marketing security services. Users that pay are added to allowedDomains to suppress the popup.
Affected versions
Min -, max 1.0.
Status
vulnerable
Previous vulnerability researches
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-49975) , Jun 30, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-57895) , Aug 25, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-2010) , Apr 20, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2023-48288) , Jun 07, 2024
WordPress Job Board and Recruitment Plugin – JobWP (d3132dc76d8786c1409d32f3771c3624f40c9f5c) , Jun 07, 2024
New vulnerability
Post Type Converter (CVE-2025-48303) , Aug 27, 2025
WP Shopify (CVE-2025-7808) , Aug 27, 2025
Image License and Protection (CVE-2025-8047) , Aug 27, 2025
Ultimate twitter profile widget (CVE-2025-48321) , Aug 27, 2025
Lazy Load for Videos (CVE-2025-7732) , Aug 27, 2025