CVE-2025-4413
BaseFortify
Publication date: 2025-06-18
Last updated on: 2025-06-18
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in the Pixabay Images WordPress plugin allows authenticated users with Author-level access or higher to upload arbitrary files to the server because the plugin's pixabay_upload function lacks proper file type validation. This means attackers can upload malicious files disguised as images, potentially leading to remote code execution on the affected site.
How can this vulnerability impact me? :
This vulnerability can allow an attacker with Author-level access to upload malicious files to your WordPress server, which may lead to remote code execution. This could result in unauthorized control over your website, data theft, defacement, or further compromise of your server and network.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by identifying if the Pixabay Images WordPress plugin version 3.4 or earlier is installed and active on your WordPress site. Since the vulnerability involves arbitrary file uploads via the pixabay_upload function, monitoring for unusual POST requests to the server related to the plugin's AJAX upload endpoint may help detect exploitation attempts. You can check the plugin version using WP-CLI with the command: `wp plugin list | grep pixabay-images`. Additionally, inspecting web server logs for POST requests containing image upload attempts to the plugin's AJAX handler may help. However, no specific detection commands are provided in the resources. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include updating the Pixabay Images plugin to a version later than 3.4 where the vulnerability is fixed. If an update is not yet available, restrict Author-level users from uploading files via this plugin or disable the plugin entirely until a patch is released. Additionally, monitor and restrict file upload capabilities and review user permissions to limit the risk of arbitrary file uploads. Implementing Web Application Firewall (WAF) rules to block suspicious upload requests related to this plugin may also help mitigate exploitation. [1]