CVE-2025-7772 – “WordPress Malware Removal Plugin Arbitrary File Read Vulnerability”

July 18, 2025

CVE ID : CVE-2025-7772

Published : July 18, 2025, 7:15 a.m. | 3 hours, 42 minutes ago

Description : The Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via the wpmr_inspect_file() function due to a missing capability check. This makes it possible for authenticated attackers, with subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-27779 – FortiSandbox FortiIsolator Insufficient Session Expiration Vulnerability

Next Article CVE-2025-7438 – MasterStudy LMS Pro WordPress Arbitrary File Upload Vulnerability

Highlights

CVE-2025-22377 – Samsung Exynos Heap-based Out-of-Bounds Write Vulnerability

May 27, 2025

CVE ID : CVE-2025-22377

Published : May 27, 2025, 5:15 p.m. | 17 minutes ago

Description : An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. A Heap-based Out-of-Bounds Write exists in the GPRS protocol implementation because of a mismatch between the actual length of the payload and the length declared within the payload.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

Report: 71% of tech leaders won’t hire devs without AI skills

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

I ran with Samsung’s Galaxy Watch 8 Classic, and it both humbled and motivated me

You can finally move Chrome’s address bar on Android – here’s how

Is your Ring camera showing strange logins? Here’s what’s going on

The details of TC39’s last meeting

The details of TC39’s last meeting

Online Examination System using PHP and MySQL

A tricky, educational quiz: it’s about time..

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

Remedy offers update on ‘FBC: Firebreak,’ details coming improvements — “We’ve seen many players come into the game and leave within the first hour.”

Ubuntu 25.10 Shrinks its Raspberry Pi Install Footprint

Microsoft kills Movies & TV storefront on Windows and Xbox — here’s what will happen to your purchased media

CVE-2025-7772 – “WordPress Malware Removal Plugin Arbitrary File Read Vulnerability”

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Windows 11 is getting AI Actions in File Explorer — here’s how to try them right now

CVE-2025-5291 – Master Slider WordPress Stored Cross-Site Scripting Vulnerability

Windows 11 KB5058405 23H2 fixes 24H2 upgrade fails, direct download .msu

Fed up with AI scraping your content? This open-source bot blocker can help – here’s how

CVE-2025-22377 – Samsung Exynos Heap-based Out-of-Bounds Write Vulnerability

Exploits and vulnerabilities in Q1 2025

Common eBay scams and how to avoid them

Kioxia Exceria Plus G2 Portable SSD 2TB Review

CVE-2025-7772 – “WordPress Malware Removal Plugin Arbitrary File Read Vulnerability”

Related Posts