Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2022/11/02 12:0 a.m.7 views

WordPress Ninja Forms Plugin Arbitrary File Upload (CVE-2022-0888)

An arbitrary file upload vulnerability exists in WordPress Ninja Forms plugin. Successful exploitation of this vulnerability allows an attacker to execute arbitrary code on the vulnerable system with administrative privileges...

7.5CVSS5AI score0.39393EPSS
Exploits2
NVD
NVD
added 2022/03/23 8:15 p.m.16 views

CVE-2022-0888

The Ninja Forms - File Uploads Extension WordPress plugin is vulnerable to arbitrary file uploads due to insufficient input file type validation found in the /includes/ajax/controllers/uploads.php file which can be bypassed making it possible for unauthenticated attackers to upload malicious file...

9.8CVSS0.39393EPSS
Exploits2References3
Cvelist
Cvelist
added 2022/03/23 7:46 p.m.21 views

CVE-2022-0888 Ninja Forms - File Uploads Extension <= 3.3.0 - Arbitrary File Upload

The Ninja Forms - File Uploads Extension WordPress plugin is vulnerable to arbitrary file uploads due to insufficient input file type validation found in the /includes/ajax/controllers/uploads.php file which can be bypassed making it possible for unauthenticated attackers to upload malicious file...

9.8CVSS10AI score0.39393EPSS
Exploits2References3
CVE
CVE
added 2022/03/23 7:46 p.m.79 views

CVE-2022-0888

The CVE-2022-0888 entry concerns the WordPress Ninja Forms - File Uploads Extension plugin. Affected component: uploads handling (uploads.php) in the plugin’s codebase. Root cause: insufficient input file type validation allows bypass, enabling unauthenticated attackers to upload arbitrary files....

9.8CVSS9.7AI score0.39393EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder