CVE-2025-8385
BaseFortify
Publication date: 2025-10-31
Last updated on: 2025-11-04
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | zombify_plugin | 1.7.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in the Zombify plugin for WordPress is a Path Traversal issue present in all versions up to 1.7.5. It occurs because the plugin's zf_get_file_by_url function does not properly validate input, allowing authenticated users with subscriber-level access or higher to read arbitrary files on the server by sending a specially crafted request. This includes sensitive system files such as /etc/passwd. Exploiting this vulnerability depends on a race condition since the generated file is deleted immediately after creation.
How can this vulnerability impact me? :
This vulnerability can allow an attacker with subscriber-level access or higher to read sensitive files on the server, potentially exposing confidential information or system details. This unauthorized file access could lead to further attacks or data breaches, compromising the security of the affected WordPress site.