2 matches found
CVE-2024-10801
creationtimestamp| type| source ---|---|--- 2024-11-09 07:36:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113451845325780689 2024-11-09 09:56:30+00:00| seen| https://t.me/cvedetector/10283...
CVE-2024-10801
CVE-2024-10801 affects the WordPress plugin User Extra Fields . The vulnerability stems from missing file type validation in the ajax_manage_file_chunk_upload() function across all versions up to 16.5. This allows unauthenticated attackers to upload arbitrary files to the affected site, with the ...