Lucene search
CVE-2024-6828
The Redux Framework plugin for WordPress allows unauthenticated JSON file uploads, leading to potential stored cross-site scripting and Remote Code Execution in certain scenarios
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | CVE-2024-6828 | 23 Jul 202402:15 | – | nvd |
 | CVE-2024-6828 Redux Framework 4.4.12 - 4.4.17 - Unauthenticated JSON File Upload to Stored Cross-Site Scripting | 23 Jul 202402:01 | – | vulnrichment |
 | CVE-2024-6828 | 5 Feb 202502:49 | – | redhatcve |
 | CVE-2024-6828 Redux Framework 4.4.12 - 4.4.17 - Unauthenticated JSON File Upload to Stored Cross-Site Scripting | 23 Jul 202402:01 | – | cvelist |
 | WordPress Redux Framework Plugin <= 4.4.17 is vulnerable to Cross Site Scripting (XSS) | 22 Jul 202400:00 | – | patchstack |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (July 22, 2024 to July 28, 2024) | 1 Aug 202414:18 | – | wordfence |
Node
[
{
"vendor": "davidanderson",
"product": "Redux Framework",
"versions": [
{
"version": "4.4.12",
"status": "affected",
"lessThanOrEqual": "4.4.17",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo23 Jul 2024 02:15Current
6.9Medium risk
Vulners AI Score6.9
CVSS37.2
EPSS0.00626
SSVC