6 matches found
CVE-2023-1208
This HTTP Headers WordPress plugin before 1.18.11 allows arbitrary data to be written to arbitrary files, leading to a Remote Code Execution vulnerability...
CVE-2023-1208
This HTTP Headers WordPress plugin before 1.18.11 allows arbitrary data to be written to arbitrary files, leading to a Remote Code Execution vulnerability...
CVE-2023-1208 HTTP Headers < 1.18.11 - Admin+ Remote Code Execution
This HTTP Headers WordPress plugin before 1.18.11 allows arbitrary data to be written to arbitrary files, leading to a Remote Code Execution vulnerability...
CVE-2023-1208 HTTP Headers < 1.18.11 - Admin+ Remote Code Execution
This HTTP Headers WordPress plugin before 1.18.11 allows arbitrary data to be written to arbitrary files, leading to a Remote Code Execution vulnerability...
CVE-2023-1208
CVE-2023-1208 refers to the WordPress HTTP Headers plugin, prior to version 1.18.11, where an arbitrary data write to arbitrary files leads to Remote Code Execution (RCE). The vulnerability is described as an access/authorization issue within the plugin, enabling an attacker with sufficient privi...
WordPress HTTP Headers Plugin < 1.18.11 is vulnerable to Remote Code Execution (RCE)
Software HTTP Headers Type Plugin Vulnerable versions 1.18.11 Fixed in 1.18.11 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2023-1208 Patch priority Low CVSS severity Low 7.2 Developer Claim ownership PSID d18b01c455ff Credits qerogramat Kakao Style Corp. Required...