CVE-2025-3616

Medienbericht

EPSS 2.03%
Veröffentlicht 22.04.2025 04:21:32
Zuletzt bearbeitet 28.05.2025 17:38:29
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Greenshift 11.4 - 11.4.5 - Authenticated (Subscriber+) Arbitrary File Upload

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the gspb_make_proxy_api_request() function in versions 11.4 to 11.4.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. The arbitrary file upload was sufficiently patched in 11.4.5, but a capability check was added in 11.4.6 to properly prevent unauthorized limited file uploads.

Mögliche Gegenmaßnahme

Greenshift – animation and page builder blocks: Update to version 11.4.6, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 10

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Greenshiftwp ≫ Greenshift - Animation And Page Builder Blocks SwPlatformwordpress Version >= 11.4 < 11.4.6

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Greenshift – animation and page builder blocks

Version 11.4-11.4.5

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.03%	0.785

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@wordfence.com	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.

VulnDex Intel

Media Report

09.08.2025 11:36

https://www.wordfence.com/threat-intel/vulnerabilities/id/0db4671e-1989-44a4-babe-ed699c7f3a52?source=cve

Third Party Advisory

https://plugins.trac.wordpress.org/browser/greenshift-animation-and-page-builder-blocks/trunk/init.php#L3340

Product

https://plugins.trac.wordpress.org/changeset/3270279/greenshift-animation-and-page-builder-blocks/trunk/init.php

Patch

https://plugins.trac.wordpress.org/changeset/3276168/greenshift-animation-and-page-builder-blocks/trunk/init.php

Patch

https://plugins.trac.wordpress.org/changeset/3273212/greenshift-animation-and-page-builder-blocks/trunk/init.php

Patch

https://www.wordfence.com/threat-intel/vulnerabilities/id/0db4671e-1989-44a4-babe-ed699c7f3a52

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-3616

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-3616

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-3616

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-3616