WordPress Plugin Vulnerabilities

Bit Assist < 1.5.3 - Subscriber+ Arbitrary File Read via fileID Parameter

Description

The plugin is vulnerable to Path Traversal via the fileID Parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Affects Plugins

Plugin icon
bit-assist
Fixed in 1.5.3

References

CVE
CVE-2025-0822
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/de9b0eba-5d2b-427c-a199-88bf96c26f5e

Miscellaneous

Original Researcher
Arkadiusz Hydzik
Verified
No
WPVDB ID
a2307be2-20b1-42cc-b84c-16376f37cb25

Timeline

Publicly Published
2025-02-14 (about 1 year ago)
Added
2025-02-20 (about 1 year ago)
Last Updated
2025-02-20 (about 1 year ago)

Other

Published
Title
Published
2014-08-01
Title
Method 2.1 - dl-skin.php _mysite_delete_skin_zip Parameter Absolute Path Traversal Remote Directory Deletion
Published
2025-05-30
Title
Profitori 2.0.6.0 - 2.1.1.3 - Unauthenticated Privilege Escalation
Published
2018-10-22
Title
Download WP-DBManager <= 2.79.1 - Arbitrary File Delete
Published
2026-02-25
Title
User Registration & Membership < 5.1.3 - Authentication Bypass
Published
2013-06-21
Title
WordPress 3.4-3.5.1 DoS in class-phpass.php