支持本站 — 捐款将帮助我们持续运营

目标:1000 元,已筹:736

73.6%
立即捐款
一、 漏洞 CVE-2025-12957 基础信息
漏洞信息
                                        # All-in-One Video Gallery <=4.5.7 文件上传漏洞

## 概述
All-in-One Video Gallery WordPress插件在4.5.7及之前版本中存在任意文件上传漏洞。

## 影响版本
所有4.5.7及以下版本。

## 细节
该漏洞源于插件对VTT文件的文件类型验证不足,未能有效检测双重扩展名文件,导致攻击者可通过构造恶意文件绕过文件类型检查,上传非法文件。

## 影响
经认证的攻击者(具备作者及以上权限)可上传任意文件至服务器,可能导致远程代码执行。
神龙判断

是否为 Web 类漏洞: 未知

判断理由:

N/A
提示
尽管我们采用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
漏洞标题
All-in-One Video Gallery <= 4.5.7 - Authenticated (Author+) Arbitrary File Upload via VTT Upload Bypass
来源:美国国家漏洞数据库 NVD
漏洞描述信息
The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 4.5.7. This is due to insufficient file type validation detecting VTT files, allowing double extension files to bypass sanitization while being accepted as a valid VTT file. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
来源:美国国家漏洞数据库 NVD
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
来源:美国国家漏洞数据库 NVD
漏洞类别
危险类型文件的不加限制上传
来源:美国国家漏洞数据库 NVD
二、漏洞 CVE-2025-12957 的公开POC
#POC 描述源链接神龙链接
三、漏洞 CVE-2025-12957 的情报信息

  • 标题: ERROR: The request could not be satisfied -- 🔗来源链接

    标签:

    神龙速读:
                                            ### 关键信息
- **HTTP Status**: 403 Forbidden  
- **Error Explanation**: The request was blocked. This indicates that the application or website prevented the connection to the server, possibly due to excessive traffic or a configuration error.  
- **CloudFront Usage**: CloudFront was used as the content delivery service. If content is provided through CloudFront, it is recommended to follow troubleshooting steps in the CloudFront documentation to correct and prevent this error.  
- **Request ID**: KN1iu_kA2sA-zY07N3wNhzthtazxb5xKFMITqSahfaSzb4y-IFbpcQ==, which can be used for further analysis or support case.
    ERROR: The request could not be satisfied

  • 标题: Changeset 3405593 for all-in-one-video-gallery – WordPress Plugin Repository -- 🔗来源链接

    标签:

    神龙速读:
                                            - **Vulnerability Update:**  
  The screenshot shows that a commit version 4.6.4 has been pushed for the `all-in-one-video-gallery` plugin. Given the recent date (11/29/2025), this could indicate a fix for a potential vulnerability.
  
- **Commit Message:**  
  The commit message is vague. It does not provide explicit information about fixing a security vulnerability. However, the timing and the number of files edited could imply a significant update possibly addressing a security issue.

- **Files:**  
  A total of 5 files were added, 7 were deleted, and 35 were edited. These modifications span across CSS, JS files, admin panels, settings, and other critical plugin components. Such extensive changes may relate to enhancing security post a vulnerability discovery.

- **Implication:**  
  Without specific details in the commit message, these updates could potentially address one or more security vulnerabilities. Developers and users concerned about security should examine the "view diffs" for each file to correlate changes with known vulnerabilities reported around this commit timeframe.
    Changeset 3405593 for all-in-one-video-gallery – WordPress Plugin Repository
  • https://nvd.nist.gov/vuln/detail/CVE-2025-12957
四、漏洞 CVE-2025-12957 的评论

暂无评论

发表评论