CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

July 16, 2025

CVE ID : CVE-2025-29009

Published : July 16, 2025, 12:15 p.m. | 5 hours, 59 minutes ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through 1.2.3.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-30973 – Codexpert, Inc CoSchool LMS Deserialization of Untrusted Data Object Injection

Next Article CVE-2025-28982 – ThimPress WP Pipes SQL Injection

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

Report: 71% of tech leaders won’t hire devs without AI skills

Could OpenAI’s rumored browser be a Chrome-killer? Here’s what I’m expecting

My favorite lens and screen-cleaning kit keeps my tech spotless, and it only costs $8

AI’s biggest impact on your workforce is still to come – 3 ways to avoid getting left behind

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

The details of TC39’s last meeting

The details of TC39’s last meeting

Online Examination System using PHP and MySQL

A tricky, educational quiz: it’s about time..

CAD Sketcher – constraint-based geometry sketcher

CAD Sketcher – constraint-based geometry sketcher

7 Best Free and Open Source Linux FTP Servers

Best Free and Open Source Alternatives to Autodesk FBX Review

CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Best PC gaming desktops for playing The Elder Scrolls 4: Oblivion Remastered in 2025

CVE-2025-4595 – FastSpring for WordPress Stored Cross-Site Scripting Vulnerability

8 Useful Google Tools to Improve Your Website Performance

CVE-2025-32922 – Tobias WP2LEADS CSRF Stored XSS

Wrote a 3min blog on how Linear Algebra is used in Machine Learning

Technology Innovation Institute TII Releases Falcon-H1: Hybrid Transformer-SSM Language Models for Scalable, Multilingual, and Long-Context Understanding

CVE-2025-50149 – Apache HTTP Server Information Disclosure

CVE-2025-53311 – Navayan Subscribe CSRF Stored XSS

CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

Related Posts