Vulnerabilities in bww
3 resultsCVE-2025-12138HIGHURL Image Importer <= 1.0.6 - Authenticated (Author+) Arbitrary File UploadEPSS 0.6%CVE-2024-8538MEDIUMBig File Uploads <= 2.1.2 - Authenticated (Author+) Full Path DisclosureEPSS 0.6%CVE-2025-14120MEDIUMURL Image Importer <= 1.0.7 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.2%