PT-2025-35334 · WordPress · Pro Bulk Watermark Plugin For Wordpress

Ch4R0N

·

Published

2025-08-30

·

Updated

2025-08-30

·

CVE-2025-4956

Report an issue
CVSS v3.1
4.3
VectorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions:

AA-Team Pro Bulk Watermark Plugin for WordPress versions through 2.0

Description:

The AA-Team Pro Bulk Watermark Plugin for WordPress contains a path traversal flaw. The vulnerability allows attackers to traverse file paths using the '.../...//' sequence.

Recommendations:

Update AA-Team Pro Bulk Watermark Plugin for WordPress to a version later than 2.0.

Fix

Weakness Enumeration

CWE-35

Related Identifiers

CVE-2025-4956

Affected Products

Pro Bulk Watermark Plugin For Wordpress