Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-4954

The Axle Demo Importer WordPress plugin through 1.0.3 does not validate files to be uploaded, which could allow authenticated users (author and above) to upload arbitrary files such as PHP on the server
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.6%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-4954


Contact Us

Shodan ® - All rights reserved