Lucene search
K

4 matches found

Circl
Circl
added 2024/01/22 9:31 p.m.5 views

CVE-2023-7082

creationtimestamp| type| source ---|---|--- 2024-01-22 21:31:31+00:00| seen| https://t.me/ctinow/171448 2024-01-26 23:16:34+00:00| seen| https://t.me/ctinow/174532 2024-02-16 10:41:33+00:00| seen| https://t.me/ctinow/186245...

7.2CVSS7AI score0.01231EPSS
Exploits2References3
CVE
CVE
added 2024/01/22 7:14 p.m.80 views

CVE-2023-7082

CVE-2023-7082 corresponds to a WordPress WP All Import plugin vulnerability. WP All Import < 3.7.3 allows admin users to upload zip files and automatically extracts them into a publicly accessible directory without proper validation of the extracted file types, enabling an administrator to pla...

7.2CVSS7.2AI score0.01231EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/22 7:14 p.m.1 views

CVE-2023-7082 WP All Import < 3.7.3 - Admin+ Arbitrary File Upload to RCE

The Import any XML or CSV File to WordPress plugin before 3.7.3 accepts all zip files and automatically extracts the zip file into a publicly accessible directory without sufficiently validating the extracted file type. This may allows high privilege users such as administrator to upload an...

7.3AI score0.01231EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/01/22 7:14 p.m.20 views

CVE-2023-7082 WP All Import < 3.7.3 - Admin+ Arbitrary File Upload to RCE

The Import any XML or CSV File to WordPress plugin before 3.7.3 accepts all zip files and automatically extracts the zip file into a publicly accessible directory without sufficiently validating the extracted file type. This may allows high privilege users such as administrator to upload an...

7.5AI score0.01231EPSS
Exploits2References1
Rows per page
Query Builder