Lucene search
PatchstackCVE-2023-51475HistoryDec 29, 2023 - 2:15 p.m.
CVE-2023-51475
2023-12-2914:15:47
CWE-434
Patchstack
web.nvd.nist.gov
25
cve-2023-51475
vulnerability
ioss
wp mlm software plugin
nvd
upload
file
dangerous type
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.001
Percentile
39.1%
Unrestricted Upload of File with Dangerous Type vulnerability in IOSS WP MLM SOFTWARE PLUGIN.This issue affects WP MLM SOFTWARE PLUGIN: from n/a through 4.0.
Affected configurations
Node
wpmlmsoftwarewp_mlm_unilevelRange≤4.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wpmlmsoftware | wp_mlm_unilevel | * | cpe:2.3:a:wpmlmsoftware:wp_mlm_unilevel:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wp-mlm",
"product": "WP MLM SOFTWARE PLUGIN",
"vendor": "IOSS",
"versions": [
{
"lessThanOrEqual": "4.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2023-51475
2023-12-29 14:15:47
wpvulndb
wpvulndb
WP MLM <= 4.0 - Unauthenticated Arbitrary File Upload
2024-01-05 00:00:00
prion
prion
Unrestricted file upload
2023-12-29 14:15:00
wordfence
wordfence
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.001
Percentile
39.1%
Related for CVE-2023-51475