CVE-2025-1565 – WordPress Mayosis Core Plugin Arbitrary File Read Vulnerability

April 25, 2025

CVE ID : CVE-2025-1565

Published : April 25, 2025, 10:15 a.m. | 1 hour, 32 minutes ago

Description : The Mayosis Core plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 5.4.1 via the library/wave-audio/peaks/remote_dl.php file. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleDistribution Release: Archcraft 2025.04.24

Next Article CVE-2025-1279 – “WordPress BM Content Builder Unauthenticated Privilege Escalation”

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Are you playing The Elder Scrolls 4: Oblivion Remastered, and if so, what do you think? — Weekend discussion 💬

I’ve been trying to figure out why these AR glasses cost $700, but I’m frankly stumped

This new vertical mouse is saving my wrist, and the company I least expected is responsible

If we want a passwordless future, let’s get our passkey story straight

Perficient Included in IDC Market Glance: Healthcare Provider Operational IT Solutions, 1Q25

Perficient Included in IDC Market Glance: Healthcare Provider Operational IT Solutions, 1Q25

Natural Language Q&A in Optimizely CMS Using Azure OpenAI and AI Search

Closing Deals Faster: The Future of Sales with AI & Personalization

Are you playing The Elder Scrolls 4: Oblivion Remastered, and if so, what do you think? — Weekend discussion 💬

Are you playing The Elder Scrolls 4: Oblivion Remastered, and if so, what do you think? — Weekend discussion 💬

I’ve been trying to figure out why these AR glasses cost $700, but I’m frankly stumped

This new vertical mouse is saving my wrist, and the company I least expected is responsible

CVE-2025-1565 – WordPress Mayosis Core Plugin Arbitrary File Read Vulnerability

SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

CVE-2025-43963 – LibRaw Out-of-Bounds Access Vulnerability

qr-rs – encode URLs or text into QR codes

5,000 AI-Controlled Fake X Accounts Linked to China Disinformation Campaign

DistroWatch Weekly, Issue 1107

A Complete Guide to BlackLine Account Reconciliation

Best Free and Open Source Alternatives to Microsoft Magnifier

Why I recommend this Hisense model over the Samsung Frame TV – even if it wasn’t $1,000 cheaper

The Elder Scrolls Online is making some big changes in 2025 — Here’s what the developers are focusing on now

CVE-2025-1565 – WordPress Mayosis Core Plugin Arbitrary File Read Vulnerability

Related Posts