CVE-2025-7437 - Vulnerability Details

- Ebook Store <= 5.8012 - Unauthenticated Arbitrary File Upload

Description

The Ebook Store plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ebook_store_save_form function in all versions up to, and including, 5.8012. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

Published: 2025-07-24

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The Ebook Store plugin for WordPress permits unauthenticated users to upload arbitrary files because it lacks file type validation, allowing an attacker to upload a malicious script that may be executed on the server. This flaw is a classic instance of unrestricted file upload (CWE‑434) and gives the attacker the ability to run code with the privileges of the web server process.

Affected Systems

All installations of the Ebook Store plugin by motovnet with versions up to and including 5.8012 are affected. The vulnerability resides in the ebook_store_save_form function and any WordPress site that has not applied a newer version is at risk. The plugin is typically used by e‑book retail or distribution sites.

Risk and Exploitability

The vulnerability scores a CVSS of 9.8, indicating critical severity. The EPSS score is less than 1 %, showing a very low but non‑zero exploitation probability, and it is not listed in the CISA KEV catalog. The attack vector is inferred as a web‑application path; an unauthenticated user can issue an HTTP request to the plugin’s upload endpoint and supply any file type. Because no validation occurs, malicious executable files can reach the server’s document root, after which they can be accessed or executed, leading to remote code execution.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

motovnet

Ebook Store

unaffected

Version	Status	Constraints
`0`	affected	≤ 5.8012

No data.

Vendor	Product	Confidence	Versions
Wordpress	Wordpress	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the Ebook Store plugin to version 5.8013 or later to apply the vendor’s fix for the file‑type validation bug.
Until a patch is applied, disable or delete the Ebook Store plugin from the WordPress installation, or block unauthenticated file uploads with .htaccess or a web‑application firewall.
Configure the web server or the plugin to allow only whitelisted MIME types for file uploads and ensure that any uploaded files are stored in a non‑executable directory.

Generated by OpenCVE AI on April 22, 2026 at 14:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-22477	The Ebook Store plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ebook_store_save_form function in all versions up to, and including, 5.8012. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00665.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://plugins.trac.wordpress.org/browser/ebook-store/trunk/functions.php#L2442
https://plugins.trac.wordpress.org/changeset/3328355
https://www.wordfence.com/threat-intel/vulnerabilities/id/0dc5c05d-51b7-4aee-bb4e-366ded45c4d8?source=cve

History

Thu, 24 Jul 2025 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Wordpress Wordpress wordpress
Vendors & Products		Wordpress Wordpress wordpress

Thu, 24 Jul 2025 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 24 Jul 2025 04:30:00 +0000

Type	Values Removed	Values Added
Description		The Ebook Store plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ebook_store_save_form function in all versions up to, and including, 5.8012. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
Title		Ebook Store <= 5.8012 - Unauthenticated Arbitrary File Upload
Weaknesses		CWE-434
References		https://plugins.trac.wordpress.org/browser/ebook-store/trunk/functions.php#L2442 https://plugins.trac.wordpress.org/changeset/3328355 https://www.wordfence.com/threat-intel/vulnerabilities/id/0dc5c05d-51b7-4aee-bb4e-366ded45c4d8?source=cve
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2025-07-24T04:24:13.455Z

Updated: 2026-04-08T16:35:19.811Z

Reserved: 2025-07-10T16:51:50.723Z

Link: CVE-2025-7437

Vulnrichment

Updated: 2025-07-24T13:35:03.536Z

NVD

Status : Deferred

Published: 2025-07-24T07:15:54.740

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-7437

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-22T14:45:19Z

Weaknesses

CWE-434

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object