cleantalk
Vulnerabilities and Security Researches

WP Pipes, CVE-2025-48267

CVE, Research URL

CVE-2025-48267

Home page URL

Security reports for WP Pipes

Application

WP Pipes

Published on
Jun 09, 2025
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThimPress WP Pipes allows Path Traversal. This issue affects WP Pipes: from n/a through 1.4.2.
Affected versions
Min -, max 1.4.3.
Status
vulnerable
Previous vulnerability researches
Piotnet Addons For Elementor (CVE-2024-5614) , Jul 28, 2024
Piotnet Addons For Elementor (CVE-2024-5502) , Aug 24, 2024
Piotnet Addons For Elementor (CVE-2024-9673) , Jan 08, 2025
Piotnet Addons For Elementor (CVE-2024-4262) , Jun 07, 2024
Piotnet Addons For Elementor (CVE-2024-29934) , Jun 07, 2024
New vulnerability
Oganro Travel Portal Search Widget for HotelBeds APITUDE API (CVE-2025-49966) , Jun 22, 2025
Hand Talk (CVE-2025-50015) , Jun 22, 2025
Login/Signup Popup ( Inline Form + Woocommerce ) (CVE-2025-50027) , Jun 22, 2025
Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social Followers (CVE-2025-49997) , Jun 22, 2025
Football Pool (CVE-2025-5490) , Jun 20, 2025