Sh1zen Multi Uploader For Gravity Forms

2 CVEs affecting Sh1zen Multi Uploader For Gravity Forms. Latest disclosed: 2025-12-12. Critical: 2, High: 0.

Top CVEs affecting Sh1zen Multi Uploader For Gravity Forms
CVESeverityScorePublishedSummary
CVE-2025-14344Critical9.82025-12-12The Multi Uploader for Gravity Forms plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'plupload_aj…
CVE-2025-23921Critical9.02025-01-22Unrestricted Upload of File with Dangerous Type vulnerability in sh1zen Multi Uploader for Gravity Forms gf-multi-uploader allows Upload a Web Shell to a Web S…