- Description
- Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Chaty Pro allows Upload a Web Shell to a Web Server. This issue affects Chaty Pro: from n/a through 3.3.3.
- Source
- audit@patchstack.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 10
- Impact score
- 6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
- audit@patchstack.com
- CWE-434
- Hype score
- Not currently trending
CVE-2025-26776: Dangerous File Upload in Chaty Pro Plugin, 10.0 rating 🔥🔥🔥 Vuln allows an attacker to upload malicious files that can be used to take control of a website. Search at https://t.co/hv7QKSqxTR: 👉 Link: https://t.co/T4rRse5qPQ #cybersecurity #vulnerability_map
@Netlas_io
6 Mar 2025
109 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
18,000サイトでインストールされているWordPressのプラグインChaty ProにCVSSスコア10の脆弱性。CVE-2025-26776は任意ファイルアップロードの脆弱性で、サイトの乗っ取りが可能。ユーザ入力に対して適切な認証とセキュリティ検証が実装されていないため。 https://t.co/Q2XsYQ02kp… https://t.co/reyUMX0mfR
@__kokumoto
6 Mar 2025
1648 Impressions
5 Retweets
19 Likes
6 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-26776 ⚠️🔴 CRITICAL (10) 🏢 NotFound - Chaty Pro 🏗️ Unknown Version 🔗 https://t.co/Kg9AXKYFg2 #CyberCron #VulnAlert https://t.co/9OpwB0BT6E
@cybercronai
22 Feb 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-26776 Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Chaty Pro allows Upload a Web Shell to a Web Server. This issue affects Chaty Pro: from n/a … https://t.co/dUvb7VJuKR
@CVEnew
22 Feb 2025
349 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-26776: CRITICAL] Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Chaty Pro allows Upload a Web Shell to a Web Server. This issue affects Chaty Pro: from n/a through 3.3.3.#cybersecurity,#vulnerability https://t.co/higx8hCjBR https://t.co/SbKsDK
@CveFindCom
22 Feb 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes