Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionCVE.org
The Workreap plugin for WordPress, used by the Workreap - Freelance Marketplace WordPress Theme, is vulnerable to arbitrary file uploads due to missing file type validation in the 'workreap_temp_upload_to_media' function in all versions up to, and including, 3.3.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
AnalysisAI
A file upload vulnerability in all (CVSS 8.8). High severity vulnerability requiring prompt remediation.
Technical ContextAI
CWE-434 (Unrestricted File Upload). CVSS 8.8 indicates high severity. Affects all.
RemediationAI
Monitor vendor channels for patch availability.
The Workreap WordPress theme before 2.2.2 AJAX actions workreap_award_temp_file_uploader and workreap_temp_file_uploader
The Workreap WordPress theme before 2.2.2 had several AJAX actions missing authorization checks to verify that a user wa
Several AJAX actions available in the Workreap WordPress theme before 2.2.2 lacked CSRF protections, as well as allowing
The Workreap WordPress theme before 2.6.3 has a vulnerability with the notifications feature as it's possible to read an
The Workreap WordPress theme before 2.6.4 does not verify that an addon service belongs to the user issuing the request,
The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and
A authentication bypass vulnerability in all (CVSS 9.8). Critical severity with potential for significant impact on affe
Share
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-18160