WordPress Plugin Vulnerabilities

BlindMatrix e-Commerce < 3.1 - Contributor+ LFI

Description

The plugin does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users, such as contributors, to perform LFI attacks.

Proof of Concept

Affects Plugins

Plugin icon
window-blinds-solution
Fixed in 3.1

References

CVE
CVE-2025-10406

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
5.5 (medium)

Miscellaneous

Original Researcher
Khaled Alenazi (Nxploited)
Submitter
Khaled Alenazi (Nxploited)
Verified
Yes
WPVDB ID
d8bdd2d4-c03c-4e7f-9c8a-6efc010311b6

Timeline

Publicly Published
2025-09-24 (about 2 months ago)
Added
2025-09-24 (about 2 months ago)
Last Updated
2025-09-24 (about 2 months ago)

Other

Published
Title
Published
2023-12-27
Title
JVM rich text icons < 1.2.7 - Subscriber+ Arbitrary File Deletion
Published
2015-05-19
Title
Simple Backup <= 2.7.10 - Arbitrary File Download
Published
2025-10-10
Title
Error Log Viewer by BestWebSoft < 1.1.7 - Authenticated (Administrator+) Arbitrary File Read
Published
2025-05-16
Title
Tainacan < 0.21.15 - Unauthenticated Arbitrary File Deletion
Published
2015-06-08
Title
WP Mobile Edition < 2.3 - Local File Inclusion (LFI)