CVE-2019-25295 | THREATINT

Description

The WP Cost Estimation plugin for WordPress is vulnerable to Upload Directory Traversal in versions before 9.660 via the uploadFormFiles function. This allows attackers to overwrite any file with a whitelisted type on an affected site.

PUBLISHED Reserved 2026-01-07 | Published 2026-01-08 | Updated 2026-01-08 | Assigner Wordfence

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unaffected

* (semver) before 9.660

affected

Timeline

2019-02-14:

Disclosed

Credits

Mikey Veenstra finder

References

www.wordfence.com/...-e870-4e36-985d-c0629abe3f78?source=cve

www.wordfence.com/...s-patched-in-wp-cost-estimation-plugin/

codecanyon.net/...t-estimation-payment-forms-builder/7818230

cve.org (CVE-2019-25295)

nvd.nist.gov (CVE-2019-25295)

Download JSON