Lucene search

CVE-2024-32809

🗓️ 17 May 2024 10:11:15Reported by PatchstackType

Unrestricted file upload vulnerability in ActiveDEMAN

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
WPVulnDB	ActiveDEMAND < 0.2.42 - Unauthenticated Arbitrary File Upload	29 Apr 202400:00	–	wpvulndb
Cvelist	CVE-2024-32809 WordPress ActiveDEMAND plugin <= 0.2.41 - Arbitrary File Upload vulnerability	17 May 202409:39	–	cvelist
NVD	CVE-2024-32809	17 May 202410:15	–	nvd
Vulnrichment	CVE-2024-32809 WordPress ActiveDEMAND plugin <= 0.2.41 - Arbitrary File Upload vulnerability	17 May 202409:39	–	vulnrichment
Patchstack	WordPress ActiveDEMAND Plugin <= 0.2.41 is vulnerable to Arbitrary File Upload	22 Apr 202400:00	–	patchstack
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 22, 2024 to April 28, 2024)	2 May 202414:49	–	wordfence

Vulners

Vulnrichment

Node

jumpdemand_inc.activedemandRange≤0.2.41wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "activedemand",
    "product": "ActiveDEMAND",
    "vendor": "JumpDEMAND Inc.",
    "versions": [
      {
        "changes": [
          {
            "at": "0.2.42",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "0.2.41",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/activedemand/wordpress-activedemand-plugin-0-2-41-arbitrary-file-upload-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 May 2024 10:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS310

EPSS0.00944

SSVC

CWE-434