Lucene search

CVE-2024-5084

🗓️ 23 May 2024 15:15:15Reported by [email protected]Type

Hash Form WordPress plugin allows unauthenticated attackers to upload arbitrary files which can lead to remote code execution

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 14
Metasploit	WordPress Hash Form Plugin RCE	28 May 202416:27	–	metasploit
Nuclei	Hash Form <= 1.1.0 - Arbitrary File Upload	4 Jul 202417:46	–	nuclei
Patchstack	WordPress Hash Form Plugin <= 1.1.0 is vulnerable to Remote Code Execution (RCE)	24 May 202400:00	–	patchstack
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash Form	30 Nov 202409:15	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash Form	27 May 202420:04	–	githubexploit
GithubExploit	Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash Form	25 May 202403:49	–	githubexploit
Cvelist	CVE-2024-5084 Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated Arbitrary File Upload to Remote Code Execution	23 May 202414:31	–	cvelist
Vulnrichment	CVE-2024-5084 Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated Arbitrary File Upload to Remote Code Execution	23 May 202414:31	–	vulnrichment
0day.today	WordPress Hash Form Plugin Remote Code Execution Exploit	5 Jun 202400:00	–	zdt
WPVulnDB	Hash Form – Drag & Drop Form Builder < 1.1.1 - Unauthenticated Arbitrary File Upload to Remote Code Execution	23 May 202400:00	–	wpvulndb

Nvd

Node

hashthemes hash_formRange<1.1.1wordpress

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/hash-form/trunk/admin/classes/HashFormBuilder.php
plugins	www.plugins.trac.wordpress.org/changeset/3090341/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/eef9e2fa-d8f0-42bf-95ac-ee4cafff0b14

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 May 2024 15:15Current

9.9High risk

Vulners AI Score9.9

CVSS39.8

EPSS0.90768

CWE-434