CVE-2025-12154 Blast Radius

HIGH • CVSS 8.8The Auto Thumbnailer plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadThumb() function in

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2025-12154.

Start Free Scan →← Back to CVE-2025-12154