Lucene search
+L

65 matches found

attackerkb
attackerkb
added 2022/03/14 12:0 a.m.47 views

CVE-2021-25003

The WPCargo Track & Trace WordPress plugin before 6.9.0 contains a file which could allow unauthenticated attackers to write a PHP file anywhere on the web server, leading to RCE Recent assessments: piotrosip at November 18, 2022 10:22am UTC reported: Assessed Attacker Value: 3 Assessed Attacker...

9.8CVSS9.6AI score0.56148EPSS
In wildExploits3References2
cnnvd
cnnvd
added 2022/03/14 12:0 a.m.7 views

WordPress plugin WPCargo Track & Trace 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

9.8CVSS8.6AI score0.56148EPSS
Exploits3References2
wpvulndb
wpvulndb
added 2022/02/21 12:0 a.m.32 views

WPCargo < 6.9.0 - Unauthenticated RCE

The plugin contains a file which could allow unauthenticated attackers to write a PHP file anywhere on the web server, leading to RCE PoC import sys import binascii import requests This is a magic string that when treated as pixels and compressed using the png algorithm, will cause to be written ...

0.7AI score0.56148EPSS
Exploits3Affected Software1
patchstack
patchstack
added 2022/02/21 12:0 a.m.84 views

WordPress WPCargo Track & Trace plugin <= 6.8.9 - Unauthenticated Remote Code Execution (RCE) vulnerability

Unauthenticated Remote Code Execution RCE vulnerability discovered by Krzysztof Zając in WordPress WPCargo Track & Trace plugin versions = 6.8.9. Solution Update the WordPress WPCargo Track & Trace plugin to the latest available version at least 6.9.0...

9.8CVSS5.5AI score0.56148EPSS
Exploits3References3Affected Software1
wpexploit
wpexploit
added 2022/02/21 12:0 a.m.413 views

WPCargo < 6.9.0 - Unauthenticated RCE

The plugin contains a file which could allow unauthenticated attackers to write a PHP file anywhere on the web server, leading to RCE import sys import binascii import requests This is a magic string that when treated as pixels and compressed using the png algorithm, will cause to be written to t...

0.4AI score0.56148EPSS
Exploits3
Rows per page
Query Builder