CVE-2025-8047

Published: Aug 14, 2025

Modified: Aug 14, 2025

PUBLISHED

Description

The disable-right-click-powered-by-pixterme through v1.2 and pixter-image-digital-license thtough v1.0 WordPress plugins load a JavaScript file which has been compromised from an apparent abandoned S3 bucket. It can be used as a backdoor by those who control it, but it currently displays an alert marketing security services. Users that pay are added to allowedDomains to suppress the popup.

Vendor	Product	Versions
Unknown	disable-right-click-powered-by-pixterme	affected `0 - <= 1.2`
Unknown	pixter-image-digital-license	affected `0 - <= 1.0`

References

https://wpscan.com/vulnerability/a0c70b98-a3f9-4d4c-a25f-81424230b1a5/

exploit

vdb-entry

technical-description

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-8047

Description

Affected Products

References