CVE-2025-47577 – TemplateInvaders TI WooCommerce Wishlist Unrestricted File Upload Remote Code Execution

May 19, 2025

CVE ID : CVE-2025-47577

Published : May 19, 2025, 7:15 p.m. | 22 minutes ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in TemplateInvaders TI WooCommerce Wishlist allows Upload a Web Shell to a Web Server.This issue affects TI WooCommerce Wishlist: from n/a through 2.9.2.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47284 – Gardener Gardenlet Privilege Escalation Vulnerability

Next Article CVE-2025-39458 – Mikado-Themes Foton PHP Remote File Inclusion Vulnerability

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

Distribution Release: Rhino Linux 2025.3

Just days after joining Game Pass, the Xbox PC edition of Call of Duty: WW2 is taken offline for “an issue”

Xbox layoffs and game cuts wreak havoc on talented developers and the company’s future portfolio — Weekend discussion 💬

Flaget – new small 5kB CLI argument parser

Flaget – new small 5kB CLI argument parser

The dog days of JavaScript summer

Databricks Lakebase – Database Branching in Action

Fixing ‘failed to synchronize all databases’ Pacman Error in Arch Linux

Fixing ‘failed to synchronize all databases’ Pacman Error in Arch Linux

“A fantastic device for creative users” — this $550 discount on ASUS’s 3K OLED creator laptop disappears before Prime Day

Distribution Release: Rhino Linux 2025.3

CVE-2025-47577 – TemplateInvaders TI WooCommerce Wishlist Unrestricted File Upload Remote Code Execution

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

Vpn-accounts op SonicWall-gateways sinds januari doelwit van aanvallen

Samsung MagicINFO 9 Server Vulnerability Exploited in the Wild

IronHusky APT deploys MysterySnail APT

CVE-2025-7060 – Monitorr Remote File Inclusion Vulnerability

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

CVE-2025-5640 – “PX4-Autopilot MavlinkReceiver Stack-Based Buffer Overflow Vulnerability”

CVE-2025-4382 – GRUB TPM Auto- decryption Data Exposure

CVE-2025-46565 – Vite File Pattern Denial of Service

CVE-2025-47577 – TemplateInvaders TI WooCommerce Wishlist Unrestricted File Upload Remote Code Execution

Related Posts