CVE-2025-48267 – ThimPress WP Pipes Path Traversal Vulnerability

June 9, 2025

CVE ID : CVE-2025-48267

Published : June 9, 2025, 4:15 p.m. | 25 minutes ago

Description : Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in ThimPress WP Pipes allows Path Traversal. This issue affects WP Pipes: from n/a through 1.4.2.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48279 – WC MyParcel Belgium Cross-site Scripting (XSS)

Next Article CVE-2025-48261 – MultiVendorX Sensitive Data Injection Vulnerability

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-48267 – ThimPress WP Pipes Path Traversal Vulnerability

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

Sitecore XM Cloud Content Migration: Plan and Strategy

CVE-2025-5495 – Netgear WNR614 URL Handler Improper Authentication Remote RCE

CVE-2025-20665 – Samsung Android SELinux Policy Missing Disclosure Vulnerability

Distribution Release: Pardus 23.4

CVE-2025-4724 – iSourcecode Placement Management System SQL Injection Vulnerability

This AI Paper from Salesforce Introduces VLM2VEC and MMEB: A Contrastive Framework and Benchmark for Universal Multimodal Embeddings

CVE-2025-46218 – Microsoft Azure AD Authentication

Thousands of WordPress Sites at Risk Due to Critical Crawlomatic Plugin Vulnerability

CVE-2025-48267 – ThimPress WP Pipes Path Traversal Vulnerability

Related Posts