Lucene search
+L

5 matches found

VulnCheck KEV
VulnCheck KEV
added 2024/03/04 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-4436

The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlitehandleupload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. However, there is a .htaccess, preventing the file to be...

9.8CVSS7.5AI score0.06646EPSS
Exploits2References1
Circl
Circl
added 2024/02/05 10:31 a.m.5 views

CVE-2021-4436

creationtimestamp| type| source ---|---|--- 2024-02-05 10:31:57+00:00| seen| https://t.me/ctinow/179108 2024-02-29 08:47:11+00:00| seen| https://t.me/ctinow/196352 2024-02-29 21:07:52+00:00| published-proof-of-concept| https://t.me/breachdetector/456754 2024-04-16 22:08:35+00:00|...

9.8CVSS8.9AI score0.06646EPSS
Exploits2References4
NVD
NVD
added 2024/02/05 9:15 a.m.22 views

CVE-2021-4436

The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlitehandleupload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. However, there is a .htaccess, preventing the file to be access...

9.8CVSS9.6AI score0.06646EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/02/05 9:2 a.m.27 views

CVE-2021-4436 3DPrint Lite < 1.9.1.5 - Unauthenticated Arbitrary File Upload

The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlitehandleupload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. However, there is a .htaccess, preventing the file to be access...

9.7AI score0.06646EPSS
Exploits2References1
CVE
CVE
added 2024/02/05 9:2 a.m.62 views

CVE-2021-4436

The CVE-2021-4436 entry corresponds to the WordPress plugin 3DPrint Lite, affected versions prior to 1.9.1.5. The vulnerability is an unauthenticated arbitrary file upload via the p3dlite_handle_upload AJAX action, caused by missing authorization and file validation. The presence of a .htaccess d...

9.8CVSS9.5AI score0.06646EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder