cleantalk
Vulnerabilities and Security Researches

Store Locator WordPress, CVE-2025-49329

CVE, Research URL

CVE-2025-49329

Home page URL

Security reports for Store Locator WordPress

Application

Store Locator WordPress

Published on
Jun 06, 2025
Research Description
Unrestricted Upload of File with Dangerous Type vulnerability in Agile Logix Store Locator WordPress allows Upload a Web Shell to a Web Server. This issue affects Store Locator WordPress: from n/a through 1.5.2.
Affected versions
Min -, max 1.5.3.
Status
vulnerable
Previous vulnerability researches
Spiffy Calendar (CVE-2024-38692) , Jul 13, 2024
Spiffy Calendar (CVE-2017-9420) , Jun 07, 2024
Spiffy Calendar (CVE-2022-29434) , Jun 07, 2024
Spiffy Calendar (CVE-2022-46859) , Jun 07, 2024
Spiffy Calendar (CVE-2023-49745) , Jun 07, 2024
New vulnerability
Widgetize Pages Light (CVE-2025-30995) , Jun 15, 2025
Zotpress (CVE-2025-4666) , Jun 15, 2025
افزونه پیامک ووکامرس Persian WooCommerce SMS (CVE-2025-49315) , Jun 15, 2025
Raychat (CVE-2025-49236) , Jun 15, 2025
«Подсказки» от DaData.ru (CVE-2025-30931) , Jun 15, 2025