CVE-2025-23968 – WordPress AiBud WP plugin <= 1.8.5 - Arbitrary File Upload vulnerability

https://notcve.org/view.php?id=CVE-2025-23968

03 Jul 2025 — Unrestricted Upload of File with Dangerous Type vulnerability in WPCenter AiBud WP allows Upload a Web Shell to a Web Server.This issue affects AiBud WP: from n/a through 1.8.5. Vulnerabilidad de carga sin restricciones de archivos con tipo peligroso en WPCenter AiBud WP permite cargar un shell web a un servidor web. Este problema afecta a AiBud WP: desde n/a hasta 1.8.5. The AI Bud – AI Content Generator, AI Chatbot, ChatGPT, Gemini, GPT-4o plugin for WordPress is vulnerable to arbitrary file uploads due t... • https://github.com/d0n601/CVE-2025-23968 • CWE-434: Unrestricted Upload of File with Dangerous Type •