{"uuid": "be48f68f-e9b0-460f-a937-166b5a72ef3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-47577", "type": "seen", "source": "https://t.me/brutsecurity/1930", "content": "CVE-2025-47577: Unrestricted Upload of File with Dangerous Type in TI WooCommerce Wishlist Plugin, 10.0 rating \ud83d\udd25\ud83d\udd25\ud83d\udd25\n\nFailure to check the types of uploaded files allows attackers to upload a web shell to the server and perform RCE.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/jYyss\n\ud83d\udc49 Dork: http.body:\"plugins/ti-woocommerce-wishlist\"\n\nRead more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/ti-woocommerce-wishlist/ti-woocommerce-wishlist-292-unauthenticated-arbitrary-file-upload", "creation_timestamp": "2026-07-10T00:00:31.806817Z"}