VDB
CVE-2025-6058
CVE-2025-6058
PUBLISHED
CVSS 9.800000190734863 CRITICAL
The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the image_upload_handle() function hooked via the 'add_booking_type' route in all versions up to, and including, 1.0.4. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
EPSS 26.73% · 96.4th percentile
Risk Scores
CVSS v3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
26.73%
96.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| iqonic | wpbookit | 0 |
| iqonicdesign | WPBookit | * |
Timeline
- Jul 12, 2025 EPSS Score
- Jul 12, 2025 Coalition ESS Score
- Jul 12, 2025 CVE Published
- Jul 15, 2025 Coalition ESS Score
- Jul 16, 2025 Coalition ESS Score
- Jul 22, 2025 PoC Published
- Jul 23, 2025 EPSS Score
- Jul 24, 2025 Coalition ESS Score
- Jul 25, 2025 EPSS Score
- Jul 25, 2025 Coalition ESS Score
- Aug 2, 2025 EPSS Score
- Aug 9, 2025 EPSS Score
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/1d779ad1-fdbe-444c-85c5-99146a1a03d8?source=cve url
- https://plugins.trac.wordpress.org/browser/wpbookit/trunk/core/admin/classes/controllers/class.wpb-booking-type-controller.php#L455 url
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3314288%40wpbookit&new=3314288%40wpbookit&sfp_email=&sfph_mail= url
- https://nvd.nist.gov/vuln/detail/CVE-2025-6058 advisory