CVE-2025-22630

N/A

Descricao

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Marketing Fire Widget Options widget-options allows OS Command Injection.This issue affects Widget Options: from n/a through <= 4.1.0.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado2/14/2025

Ultima modificacao4/1/2026

Fontenvd

Avistamentos honeypot0

Fraquezas (CWE)

CWE-77

Referencias

https://patchstack.com/database/Wordpress/Plugin/widget-options/vulnerability/wordpress-widget-options-plugin-4-1-0-arbitrary-code-execution-vulnerability?_s_id=cve(audit@patchstack.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.