2 matches found
CVE-2024-11635
The WordPress File Upload plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.24.12 via the 'wfuABSPATH' cookie parameter. This makes it possible for unauthenticated attackers to execute code on the server...
WordPress WordPress File Upload plugin <= 4.24.12 - Unuathenticated Remote Code Execution vulnerability
Unuathenticated Remote Code Execution vulnerability discovered by abrahack in WordPress Plugin WordPress File Upload versions = 4.24.12...