Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-47431

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00969EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 3:11 a.m.5 views

CVE-2024-6315

The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handleUploadFile' function in all versions up to, and including, 1.0.65. This makes it possible for authenticated attackers, with contributor-level and above permissions,...

8.8CVSS7.7AI score0.00969EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/06 3:2 a.m.11 views

WordPress Blox Page Builder plugin <= 1.0.65 - Authenticated (Contributor+) Arbitrary File Upload vulnerability

Authenticated Contributor+ Arbitrary File Upload vulnerability discovered by István Márton in WordPress Plugin Blox Page Builder versions = 1.0.65...

8.8CVSS6.8AI score0.00969EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/08/06 2:15 a.m.25 views

CVE-2024-6315

The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handleUploadFile' function in all versions up to, and including, 1.0.65. This makes it possible for authenticated attackers, with contributor-level and above permissions,...

8.8CVSS0.00969EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/06 1:49 a.m.12 views

CVE-2024-6315 Blox Page Builder <= 1.0.65 - Authenticated (Contributor+) Arbitrary File Upload

The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handleUploadFile' function in all versions up to, and including, 1.0.65. This makes it possible for authenticated attackers, with contributor-level and above permissions,...

8.8CVSS8AI score0.00969EPSS
Exploits0References2
CVE
CVE
added 2024/08/06 1:49 a.m.34 views

CVE-2024-6315

CVE-2024-6315 concerns Blox Page Builder for WordPress. The vulnerability stems from missing file-type validation in the handleUploadFile function across versions up to 1.0.65, enabling authenticated users with contributor+ permissions to upload arbitrary files to the server; this could enable re...

8.8CVSS8.9AI score0.00969EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/06 12:0 a.m.4 views

PT-2024-37536 · WordPress · Blox Page Builder

Name of the Vulnerable Software and Affected Versions: Blox Page Builder plugin for WordPress versions up to, and including, 1.0.65 Description: The issue is related to missing file type validation in the handleUploadFile function, allowing authenticated attackers with contributor-level and above...

8.8CVSS7.5AI score0.00969EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/08/06 12:0 a.m.5 views

WordPress plugin Blox Page Builder 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.3AI score0.00969EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/08/06 12:0 a.m.11 views

WordPress Blox Page Builder Plugin <= 1.0.65 is vulnerable to Arbitrary File Upload

Software Blox Page Builder Type Plugin Vulnerable versions = 1.0.65 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-6315 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID ffdf8c3e90d1 Credits István Márton Required privilege...

8.8CVSS6.8AI score0.00969EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder