cleantalk
Vulnerabilities and Security Researches

WP Tools Increase Maximum Limits, Repair, Server PHP Info, Javascript errors, File Permissions, Transients, Error Log, CVE-2025-39544

CVE, Research URL

CVE-2025-39544

Home page URL

Security reports for WP Tools Increase Maximum Limits, Repair, Server PHP Info, Javascript errors, File Permissions, Transients, Error Log

Application

WP Tools Increase Maximum Limits, Repair, Server PHP Info, Javascript errors, File Permissions, Transients, Error Log

Published on
Apr 16, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi WP Tools allows Path Traversal. This issue affects WP Tools: from n/a through 5.18.
Affected versions
Min -, max 5.19.
Status
vulnerable
Previous vulnerability researches
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-1312) , Mar 27, 2025
Ultimate Blocks – WordPress Blocks Plugin (CVE-2024-6362) , Jul 31, 2024
Ultimate Blocks – WordPress Blocks Plugin (CVE-2022-4974) , Nov 15, 2024
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-31077) , Apr 02, 2025
Ultimate Blocks – WordPress Blocks Plugin (CVE-2024-4655) , Jul 03, 2024
New vulnerability
Cost Calculator Builder (CVE-2025-39587) , Apr 19, 2025
Klarna Checkout for WooCommerce (CVE-2024-13925) , Apr 19, 2025
WordPress Button Plugin MaxButtons (CVE-2025-39444) , Apr 19, 2025
Course Booking System (CVE-2025-32508) , Apr 19, 2025
Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Wo (CVE-2025-39588) , Apr 19, 2025