CVE-2024-6651

🗓️ 06 Aug 2024 06:35:15Reported by [email protected]Type

The WordPress File Upload plugin (before 4.24.8) is vulnerable to Reflected Cross-Site Scripting (CVE-2024-6651)

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
RedhatCVE	CVE-2024-6651	23 May 202510:22	–	redhatcve
Nuclei	WordPress File Upload Plugin < 4.24.8 - Cross-Site Scripting	13 Mar 202503:09	–	nuclei
Circl	CVE-2024-6651	13 Mar 202503:09	–	circl
Vulnrichment	CVE-2024-6651 WordPress File Upload < 4.24.8 - Reflected XSS	6 Aug 202406:00	–	vulnrichment
Cvelist	CVE-2024-6651 WordPress File Upload < 4.24.8 - Reflected XSS	6 Aug 202406:00	–	cvelist
Patchstack	WordPress WordPress File Upload Plugin < 4.24.8 is vulnerable to Cross Site Scripting (XSS)	6 Aug 202400:00	–	patchstack
CVE	CVE-2024-6651	6 Aug 202406:15	–	cve
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 15, 2024 to July 21, 2024)	25 Jul 202414:49	–	wordfence

Nvd

Node

iptanus wordpress_file_uploadRange<4.24.8wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/65e2c77d-09bd-4a44-81d9-d7a5db0e0f84/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Aug 2024 06:15Current

CVSS36.1

EPSS0.0185

CWE-79