Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/02/05 10:35 a.m.5 views

CVE-2024-12583

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS9.6AI score0.01393EPSS
Exploits0References1
nvd
nvd
added 2025/01/04 9:15 a.m.7 views

CVE-2024-12583

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS0.01393EPSS
Exploits0References3
circl
circl
added 2025/01/04 8:23 a.m.6 views

CVE-2024-12583

creationtimestamp| type| source ---|---|--- 2025-01-04 08:23:51+00:00| seen| https://infosec.exchange/users/cve/statuses/113769121406411898 2025-01-04 10:34:41+00:00| seen| https://t.me/cvedetector/14270 2025-01-07 03:42:43+00:00| seen|...

9.9CVSS8.9AI score0.01393EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/01/04 8:22 a.m.8 views

CVE-2024-12583 Dynamics 365 Integration <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS9.6AI score0.01393EPSS
Exploits0References3
cvelist
cvelist
added 2025/01/04 8:22 a.m.110 views

CVE-2024-12583 Dynamics 365 Integration <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS0.01393EPSS
Exploits0References3
Rows per page
Query Builder