CVE-2024-0757

2024-06-0406:15:08

[email protected]

web.nvd.nist.gov

cve-2024-0757

nvd

security document

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

The Insert or Embed Articulate Content into WordPress plugin through 4.3000000023 is not properly filtering which file extensions are allowed to be imported on the server, allowing the uploading of malicious code within zip files

Affected configurations

Vulners

Node

elearningfreakinsert_or_embed_articulate_contentRange≤4.3000000023

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "Insert or Embed Articulate Content into WordPress",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThanOrEqual": "4.3000000023"
      }
    ],
    "defaultStatus": "affected"
  }
]