CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

July 16, 2025

CVE ID : CVE-2025-29009

Published : July 16, 2025, 12:15 p.m. | 5 hours, 59 minutes ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through 1.2.3.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-30973 – Codexpert, Inc CoSchool LMS Deserialization of Untrusted Data Object Injection

Next Article CVE-2025-28982 – ThimPress WP Pipes SQL Injection

Microsoft Graph CLI to be retired

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

I asked AI to modify mission-critical code, and what happened next haunts me

Why you should delete your browser extensions right now – or do this to stay safe

Dolby Vision 2 comes with big upgrades – here’s which TVs get them first

This one small feature makes this travel charger my favorite for business trips

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

Gemini 2.5: Our most intelligent models are getting even better

CVE-2025-9244 – “Linksys Router AddStaticRoute Command Injection Vulnerability”

CVE-2025-37783 – Linux Kernel drm/msm Error Pointer Dereference Vulnerability

EmojiClu – graphical implementation of the Zebra Puzzle

Hackers Exploiting Critical Langflow Vulnerability to Deploy Flodrix Botnet and Take System Control

Are smart glasses with built-in hearing aids viable? My verdict after months of testing

Xbox Game Pass Gets an Assassin’s Creed Game and More in August — While this Awesome Co-op Title Returns to the Service

Forge Sparks – get Git forges notifications

CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

Related Posts