Lucene search
HistoryFeb 27, 2024 - 9:15 a.m.
CVE-2023-6585
cve-2023-6585
wp jobsearch
wordpress plugin
file upload vulnerability
unauthenticated attackers
nvd
The WP JobSearch WordPress plugin before 2.3.4 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP on the server
Affected configurations
Node
eyecixjobsearch_wp_job_boardRange<2.3.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| eyecix | jobsearch_wp_job_board | * | cpe:2.3:a:eyecix:jobsearch_wp_job_board:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "WP JobSearch",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "2.3.4"
}
],
"defaultStatus": "unaffected"
}
]Related
cvelist
cvelist
CVE-2023-6585 JobSearch WP Job Board < 2.3.4 - Arbitrary File Upload to RCE
2024-02-27 08:30:25
nvd
nvd
CVE-2023-6585
2024-02-27 09:15:37
wpexploit
wpexploit
JobSearch WP Job Board < 2.3.4 - Arbitrary File Upload to RCE
2024-02-02 00:00:00
prion
prion
Code injection
2024-02-27 09:15:00
wpvulndb
wpvulndb
JobSearch WP Job Board < 2.3.4 - Arbitrary File Upload to RCE
2024-02-02 00:00:00