Lucene search
+L

6 matches found

Circl
Circl
added 2022/04/25 8:42 p.m.7 views

CVE-2021-4225

creationtimestamp| type| source ---|---|--- 2022-04-25 20:42:18+00:00| seen| https://t.me/cibsecurity/41410...

8.8CVSS8.2AI score0.0169EPSS
Exploits1References1
OSV
OSV
added 2022/04/25 4:16 p.m.5 views

CVE-2021-4225

The SP Project & Document Manager WordPress plugin before 4.24 allows any authenticated users, such as subscribers, to upload files. The plugin attempts to prevent PHP and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovere...

8.8CVSS7.3AI score0.0169EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/04/25 4:16 p.m.7 views

CVE-2021-4225

The SP Project & Document Manager WordPress plugin before 4.24 allows any authenticated users, such as subscribers, to upload files. The plugin attempts to prevent PHP and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovere...

8.8CVSS7.6AI score0.0169EPSS
Exploits1References3
NVD
NVD
added 2022/04/25 4:16 p.m.16 views

CVE-2021-4225

The SP Project & Document Manager WordPress plugin before 4.24 allows any authenticated users, such as subscribers, to upload files. The plugin attempts to prevent PHP and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovere...

8.8CVSS0.0169EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/04/25 3:50 p.m.43 views

CVE-2021-4225 SP Project & Document Manager < 4.24 - Subscriber+ Shell Upload

The SP Project & Document Manager WordPress plugin before 4.24 allows any authenticated users, such as subscribers, to upload files. The plugin attempts to prevent PHP and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovere...

8.9AI score0.0169EPSS
Exploits1References2
CVE
CVE
added 2022/04/25 3:50 p.m.68 views

CVE-2021-4225

The CVE concerns the SP Project & Document Manager WordPress plugin (pre-4.24). The issue arises in the file-upload feature, where authentication is not restricted and users such as subscribers can upload files. The vendor’s extension-based checks are intended to block executable PHP or similar f...

8.8CVSS8.8AI score0.0169EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder