7 matches found
EUVD-2024-47532
Malicious code in bioql PyPI...
CVE-2024-6431
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation and missing capability check in the 'sendMail' function in all versions up to, and including, 2.10.13. This makes it possible for authenticated attackers, with subscriber-lev...
WordPress Media.net Ads Manager plugin <= 2.10.13 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Upload vulnerability
Missing Authorization to Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by István Márton in WordPress Plugin Media.net Ads Manager versions = 2.10.13...
CVE-2024-6431
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation and missing capability check in the 'sendMail' function in all versions up to, and including, 2.10.13. This makes it possible for authenticated attackers, with subscriber-lev...
CVE-2024-6431 Media.net Ads Manager <= 2.10.13 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Upload
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation and missing capability check in the 'sendMail' function in all versions up to, and including, 2.10.13. This makes it possible for authenticated attackers, with subscriber-lev...
WordPress plugin Media.net Ads Manager 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability...
PT-2024-37621 · WordPress · Media.Net Ads Manager
Name of the Vulnerable Software and Affected Versions: Media.net Ads Manager plugin for WordPress versions up to, and including, 2.10.13 Description: The issue arises from missing file type validation and a missing capability check in the sendMail function, allowing authenticated attackers with...