CVE-2025-8047CRITICAL 9.8EPSS p32.8%

CVE-2025-8047CVE-2025-8047

Description

The disable-right-click-powered-by-pixterme through v1.2 and pixter-image-digital-license thtough v1.0 WordPress plugins load a JavaScript file which has been compromised from an apparent abandoned S3 bucket. It can be used as a backdoor by those who control it, but it currently displays an alert marketing security services. Users that pay are added to allowedDomains to suppress the popup.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.41% probability of exploitation · percentile 32.8% · 2026-06-19T12:03:05Z
Published2025-08-14
Last modified2026-04-15

References

  1. https://wpscan.com/vulnerability/a0c70b98-a3f9-4d4c-a25f-81424230b1a5/
  2. https://wpscan.com/vulnerability/a0c70b98-a3f9-4d4c-a25f-81424230b1a5/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-4413
CVE
CVE-2025-10647
CVE
CVE-2026-3891
CVE
CVE-2025-9048
CVE
CVE-2025-58207
CVE
CVE-2025-8565
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.