CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

July 16, 2025

CVE ID : CVE-2025-29009

Published : July 16, 2025, 12:15 p.m. | 5 hours, 59 minutes ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through 1.2.3.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-30973 – Codexpert, Inc CoSchool LMS Deserialization of Untrusted Data Object Injection

Next Article CVE-2025-28982 – ThimPress WP Pipes SQL Injection

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Best React.js Development Services in 2025: Features, Benefits & What to Look For

August 2025: AI updates from the past month

This 3-in-1 charger has a retractable superpower that’s a must for travel

How a legacy hardware company reinvented itself in the AI age

The 13+ best Walmart Labor Day deals 2025: Sales on Apple, Samsung, LG, and more

You can save up to $700 on my favorite Bluetti power stations for Labor Day

Call for Speakers – JS Conf Armenia 2025

Call for Speakers – JS Conf Armenia 2025

Streamlining Application Automation with Laravel’s Task Scheduler

A Fluent Path Builder for PHP and Laravel

Windows 11 KB5064081 24H2 adds taskbar clock, direct download links for .msu offline installer

Windows 11 KB5064081 24H2 adds taskbar clock, direct download links for .msu offline installer

My Family Cinema not Working? 12 Quick Fixes

Super-linter – collection of linters and code analyzers

CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices

Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

CVE-2025-7596 – Tenda FH1205 Stack-Based Buffer Overflow Vulnerability

Windows 11 will let you change on-screen indicators position, like volume flyout

CVE-2025-47293 – PowSyBl XML Entity Injection and SSRF Vulnerability

AyySSHush: New Stealthy Botnet Backdoors ASUS Routers, Persists Through Firmware Updates

Designing the new Airbnb app

CVE-2025-47649 – Ilmosys Open Close WooCommerce Store Path Traversal Vulnerability

CVE-2025-46802 – PuTTY Screen Session Privilege Escalation Vulnerability

CVE-2025-32707 – Windows NTFS Out-of-bounds Read Privilege Elevation

CVE-2025-29009 – Webkul WooCommerce Medical Prescription Attachment Plugin Unrestricted File Upload Vulnerability

Related Posts