CVE-2025-66680

HIGH

WiseCleaner Wise Force Deleter <=7.3.2 - Arbitrary File Deletion

Title source: llm

Description

An issue in the WiseDelfile64.sys component of WiseCleaner Wise Force Deleter 7.3.2 and earlier allows attackers to delete arbitrary files via a crafted request.

Exploits (1)

nomisec WORKING POC 2 stars

by cwjchoi01 · poc

https://github.com/cwjchoi01/CVE-2025-66680

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory] https://github.com/cwjchoi01/CVE-2025-66680/tree/main

View Exploit ZIP pw:eip

[Various Sources] https://www.wisecleaner.com/wise-force-deleter.html

Scores

CVSS v3 7.1

EPSS 0.0005

EPSS Percentile 14.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Details

CWE

CWE-59

Status published

Products (1)

wisecleaner/wise_force_deleter < 1.5.7.59

Published Mar 03, 2026

Tracked Since Mar 03, 2026