Lucene search
+L

7 matches found

VulnCheck KEV
VulnCheck KEV
added 2024/07/25 12:0 a.m.2 views

VulnCheck KEV: CVE-2022-24663

PHP Everywhere = 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user...

9.9CVSS7.4AI score0.02047EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/07/26 12:0 a.m.12 views

WordPress PHP Everywhere Plugin <= 2.0.3 is vulnerable to Remote Code Execution (RCE)

Software PHP Everywhere Type Plugin Vulnerable versions = 2.0.3 Fixed in 3.0.0 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2022-24663 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID 39f7e97ee70f Credits Ramuel Gall Required privilege...

9.9CVSS7.1AI score0.02047EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/16 4:38 p.m.8 views

CVE-2022-24663 Remote Code Execution by Subscriber+ users via WordPress shortcode

PHP Everywhere = 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user...

9.9CVSS9.6AI score0.02047EPSS
Exploits2References1
CVE
CVE
added 2022/02/16 4:38 p.m.278 views

CVE-2022-24663

CVE-2022-24663 affects the WordPress PHP Everywhere plugin (versions

9.9CVSS8.8AI score0.02047EPSS
In wildExploits2References1Affected Software1
Cvelist
Cvelist
added 2022/02/16 4:38 p.m.29 views

CVE-2022-24663 Remote Code Execution by Subscriber+ users via WordPress shortcode

PHP Everywhere = 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user...

9.9CVSS9.8AI score0.02047EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/02/16 12:0 a.m.28 views

CVE-2022-24663

PHP Everywhere = 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.9CVSS7.1AI score0.02047EPSS
In wildExploits2References2
Packet Storm
Packet Storm
added 2022/02/08 12:0 a.m.362 views

PHP Everywhere 2.0.3 Remote Code Execution

On January 4, 2022, the Wordfence Threat Intelligence team began the responsible disclosure process for several Remote Code Execution vulnerabilities in PHP Everywhere, a WordPress plugin installed on over 30,000 websites. One of these vulnerabilities allowed any authenticated user of any level,...

0.3AI score0.026EPSS
Exploits3
Rows per page
Query Builder