Lucene search

CVE-2024-2024 Folders Pro <= 3.0.2 - Authenticated(Author+) Arbitrary File Upload via handle_folders_file_upload

🗓️ 14 Jun 2024 12:02:51Reported by WordfenceType

FPro plugin arbitrary file upload vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Patchstack	WordPress Folders Pro Plugin <= 3.0.2 is vulnerable to Arbitrary File Upload	14 Jun 202400:00	–	patchstack
NVD	CVE-2024-2024	14 Jun 202413:15	–	nvd
Vulnrichment	CVE-2024-2024 Folders Pro <= 3.0.2 - Authenticated(Author+) Arbitrary File Upload via handle_folders_file_upload	14 Jun 202412:51	–	vulnrichment
WPVulnDB	Folders Pro < 3.0.3 - Authenticated(Author+) Arbitrary File Upload via handle_folders_file_upload	13 Jun 202400:00	–	wpvulndb
CVE	CVE-2024-2024	14 Jun 202413:15	–	cve
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 10, 2024 to June 16, 2024)	20 Jun 202413:40	–	wordfence

[
  {
    "vendor": "Premio",
    "product": "Folders Pro",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "3.0.2",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/folders/tags/3.0/includes/media.replace.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/fa1d953f-6a5c-46af-a1a5-2c4f90da679a

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Jun 2024 12:51Current

CVSS38.8

EPSS0.02555