CVE-2025-4419 | Hot Random Image Plugin up to 1.9.2 on WordPress path path traversal
A vulnerability has been found in Hot Random Image Plugin up to 1.9.2 on WordPress and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument path leads to path traversal.
This vulnerability is known as CVE-2025-4419. The attack can be launched remotely. There is no exploit available.