CVE-2025-7852 — AI Deep Analysis Summary

🚨 **Essence**: Arbitrary File Upload via missing validation in `image_upload_handle`.…

🛡️ **Root Cause**: **CWE-434** (Unrestricted Upload of File with Dangerous Type). The `image_upload_handle` function fails to verify file types/extensions before saving.

📦 **Affected**: **WPBookit** plugin by **iqonicdesign**. Versions **1.0.6 and earlier**. Built on WordPress (PHP/MySQL).

💀 **Attacker Power**: Full control! Can execute arbitrary code, steal database credentials, modify site content, and pivot to other network assets. **High Impact** (CVSS H).

⚡ **Threshold**: **LOW**. CVSS indicates **No Privileges (PR:N)**, **No User Interaction (UI:N)**, and **Network Access (AV:N)**. Easy to exploit remotely.

🔍 **Exploit Status**: No public PoC listed in data. However, the flaw is clear (missing validation). Wild exploitation is **likely** due to low barrier to entry.

🔎 **Self-Check**: Scan for **WPBookit v1.0.6 or older**. Check if `image_upload_handle` exists without strict MIME/extension checks. Use WPScan or manual code review.

🛠️ **Fix**: Update WPBookit to the latest version. Patch available via WordPress Trac (Changeset 3331165). Official mitigation is **immediate upgrade**.

🚧 **No Patch?**: Disable the plugin immediately. If needed, implement strict server-side file upload filtering (WAF) and restrict upload directories to prevent execution.

🔥 **Urgency**: **CRITICAL**. High CVSS score + Low Exploit Difficulty = Immediate action required. Patch now to prevent RCE!