CVE Details
Basic Information
| Title | Woffice Core <= 5.4.26 - Authenticated (Contributor+) Arbitrary File Deletion |
|---|---|
| Type | cve |
| Published | 2025-08-02T03:28:18.889Z |
| Modified | 2025-08-02T03:28:18.889Z |
Product Information
| Vendor | WofficeIO |
|---|---|
| Product | Woffice Core |
| Version | * |
CVSS Information
| Base Score | 6.8 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H |
AI Analysis
| AI Description | The Woffice Core WordPress plugin is vulnerable to arbitrary file deletion due to insufficient validation, allowing authenticated attackers with Contributor access to delete files, potentially leading to remote code execution. |
|---|---|
| AI Severity | Medium |
| AI Vendor | WofficeIO |
| AI Product | Woffice Core |
| AI Version | up to 5.4.26 |
Affected Products
- WofficeIO Woffice Core *
Additional Information
| CWE List | CWE-22 |
|---|---|
| Source | Wordfence |
Description
The Woffice Core plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the woffice_file_manager_delete() function in all versions up to, and including, 5.4.26. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).