Wordpress TemplateInvaders - Arbitrary File Upload CVE-2025-47577

Severity
Vulnerability description
Not available
Risk description
Not available
Exploit capabilities

Sniper can gain unauthenticated Remote Code Execution on the target system and extract multiple artefacts as evidence.

Recommendation
Not available
Codename
Not available
Detectable with
Network Scanner
Scan engine
Sniper
Cisa Kev
Cybersecurity Infrastructure Security Agency (CISA) Yes
Exploitable with Sniper
Yes
CVE Published
May 19, 2025
Detection added at
Software Type
WordPress E-commerce Plugin
Vendor
TemplateInvaders
Product
TI WooCommerce Wishlist

Detect & validate this vulnerability

Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.