Skip to main content
Loading…
    CVE-2025-2780 — The Woffice Core plugin for WordPress, used by the Woffice Theme, is vulnerable to arbitrary file uploads due to missing file type validation in the 'saveFeaturedImage' function in all version — CVE Database · The Intelligence Room