Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.10 views

CVE-2021-24563

The Frontend Uploader WordPress plugin through 1.3.2 does not prevent HTML files from being uploaded via its form, allowing unauthenticated user to upload a malicious HTML file containing JavaScript for example, which will be triggered when someone access the file directly...

6.1CVSS6.7AI score0.26379EPSS
Exploits6References1
Packet Storm
Packet Storm
added 2022/01/12 12:0 a.m.308 views

WordPress Frontend Uploader 1.3.2 Cross Site Scripting

Exploit Title: WordPress Plugin Frontend Uploader 1.3.2 - Stored Cross Site Scripting XSS Unauthenticated Date: 10/01/2022 Exploit Author: Veshraj Ghimire Vendor Homepage: https://wordpress.org/plugins/frontend-uploader/ Software Link: https://plugins.trac.wordpress.org/browser/frontend-uploader/...

6.1CVSS6.3AI score0.26379EPSS
Exploits6
OSV
OSV
added 2021/10/11 11:15 a.m.5 views

CVE-2021-24563

The Frontend Uploader WordPress plugin through 1.3.2 does not prevent HTML files from being uploaded via its form, allowing unauthenticated user to upload a malicious HTML file containing JavaScript for example, which will be triggered when someone access the file directly...

6.1CVSS5.8AI score0.26379EPSS
Exploits6References2
CVE
CVE
added 2021/10/11 10:45 a.m.82 views

CVE-2021-24563

The CVE-2021-24563 affects the WordPress Frontend Uploader plugin prior to v1.3.2. The vulnerability is a Stored Cross-Site Scripting (XSS) flaw caused by the plugin not preventing HTML file uploads via its form, enabling an unauthenticated user to upload an HTML file containing JavaScript that e...

6.1CVSS6.2AI score0.26379EPSS
Exploits6References2Affected Software1
GithubExploit
GithubExploit
added 2021/10/05 6:21 a.m.187 views

Exploit for Cross-site Scripting in Frontend_Uploader_Project Frontend_Uploader

CVE-2021-24563 Frontend Uploader alert/XSS/ ----------------...

6.1CVSS6.3AI score0.26379EPSS
Exploits6
Rows per page
Query Builder