{"uuid": "0836ad2c-3c7b-4dda-96a1-d2b790d17e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-47577", "type": "seen", "source": "https://t.me/brutsecurity/1930", "content": "CVE-2025-47577: Unrestricted Upload of File with Dangerous Type in TI WooCommerce Wishlist Plugin, 10.0 rating \ud83d\udd25\ud83d\udd25\ud83d\udd25\n\nFailure to check the types of uploaded files allows attackers to upload a web shell to the server and perform RCE.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/jYyss\n\ud83d\udc49 Dork: http.body:\"plugins/ti-woocommerce-wishlist\"\n\nRead more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/ti-woocommerce-wishlist/ti-woocommerce-wishlist-292-unauthenticated-arbitrary-file-upload", "creation_timestamp": "2026-07-09T03:00:08.296316Z"}