CVE-2025-69403

Published Feb 20, 2026

Last updated 2 months ago

CVSS critical 9.9

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-69403 is identified as an "Unrestricted Upload of File with Dangerous Type" vulnerability (CWE-434) affecting Bravis-Themes Bravis Addons. This flaw allows for the use of malicious files within the affected software. Specifically, the vulnerability impacts Bravis Addons versions up to and including 1.1.9. Exploitation of this issue does not require any authentication or user interaction, and its impact is confined to the initially vulnerable component.

Description
Unrestricted Upload of File with Dangerous Type vulnerability in Bravis-Themes Bravis Addons bravis-addons allows Using Malicious Files.This issue affects Bravis Addons: from n/a through <= 1.3.0.
Source
audit@patchstack.com
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.9
Impact score
6
Exploitability score
3.1
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

audit@patchstack.com
CWE-434

Social media

Hype score
Not currently trending

  1. CVE-2025-69403 Unrestricted Upload of File with Dangerous Type vulnerability in Bravis-Themes Bravis Addons bravis-addons allows Using Malicious Files.This issue affects Bravis Addo… https://t.co/jwOqaGPk5w

    @CVEnew

    21 Feb 2026

    1487 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.