Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.7 views

CVE-2021-24644

The Images to WebP WordPress plugin before 1.9 does not validate or sanitise the tab parameter before passing it to the include function, which could lead to a Local File Inclusion issue...

7.5CVSS6.7AI score0.05028EPSS
Exploits2References1
OSV
OSV
added 2021/11/23 8:15 p.m.3 views

CVE-2021-24644

The Images to WebP WordPress plugin before 1.9 does not validate or sanitise the tab parameter before passing it to the include function, which could lead to a Local File Inclusion issue...

7.5CVSS7.1AI score0.05028EPSS
Exploits2References1
NVD
NVD
added 2021/11/23 8:15 p.m.12 views

CVE-2021-24644

The Images to WebP WordPress plugin before 1.9 does not validate or sanitise the tab parameter before passing it to the include function, which could lead to a Local File Inclusion issue...

7.5CVSS0.05028EPSS
Exploits2References1
Cvelist
Cvelist
added 2021/11/23 7:16 p.m.19 views

CVE-2021-24644 Images to WebP < 1.9 - Authenticated Local File Inclusion

The Images to WebP WordPress plugin before 1.9 does not validate or sanitise the tab parameter before passing it to the include function, which could lead to a Local File Inclusion issue...

7.7AI score0.05028EPSS
Exploits2References1
CVE
CVE
added 2021/11/23 7:16 p.m.63 views

CVE-2021-24644

CVE-2021-24644 affects the Images to WebP WordPress plugin (versions prior to 1.9). The root cause is that the tab parameter is not validated/sanitized before being passed to include(), enabling Local File Inclusion. Exploitation context in connected data indicates an authenticated LFI scenario, ...

7.5CVSS7.5AI score0.05028EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder