CVE-2025-11072

Vulnerability Description

The MelAbu WP Download Counter Button WordPress plugin through 1.8.6.7 does not validate the path of files to be downloaded, which could allow unauthenticated attacker to read/download arbitrary files.

Vulnerability Details

Published Date

November 05, 2025

Last Modified

November 06, 2025

Source

NVD

CVE-2025-11072

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment