A severe security vulnerability has been discovered in the popular WordPress plugin, Crawlomatic Multisite Scraper Post Generator, potentially placing thousands of websites at risk. Tracked as CVE-2025-4389, the flaw allows unauthenticated attackers to upload malicious files, which could ultimately lead to remote code execution on affected websites.
First seen on thecyberexpress.com
Jump to article: thecyberexpress.com/crawlomatic-plugin-hit-by-cve-2025-4389/
