Lucene search
+L

6 matches found

NVD
NVD
added 2024/04/03 12:15 p.m.22 views

CVE-2024-27972

Improper Control of Generation of Code 'Code Injection' vulnerability in Jack Arturo WP Fusion Lite wp-fusion-lite.This issue affects WP Fusion Lite: from n/a through = 3.41.24...

9.9CVSS9.6AI score0.01626EPSS
Exploits0References2
CVE
CVE
added 2024/04/03 11:51 a.m.88 views

CVE-2024-27972

CVE-2024-27972 affects WP Fusion Lite (Very Good Plugins). An improper neutralization of special elements enables a command injection that leads to authenticated remote code execution in WP Fusion Lite versions up to 3.41.24. The vulnerability requires authentication (Contributor+ per enrichment)...

9.9CVSS7.2AI score0.01626EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/03 11:51 a.m.41 views

CVE-2024-27972 WordPress WP Fusion Lite plugin <= 3.41.24 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Jack Arturo WP Fusion Lite wp-fusion-lite.This issue affects WP Fusion Lite: from n/a through = 3.41.24...

9.9CVSS9.8AI score0.01626EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/03 11:51 a.m.19 views

CVE-2024-27972 WordPress WP Fusion Lite plugin <= 3.41.24 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Jack Arturo WP Fusion Lite wp-fusion-lite.This issue affects WP Fusion Lite: from n/a through = 3.41.24...

9.9CVSS7.2AI score0.01626EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/13 12:0 a.m.18 views

WordPress WP Fusion Lite Plugin <= 3.41.24 is vulnerable to Remote Code Execution (RCE)

Software WP Fusion Lite Type Plugin Vulnerable versions = 3.41.24 Fixed in 3.42.10 OWASP Top 10 A3: Injection Classification Remote Code Execution RCE CVE CVE-2024-27972 Patch priority Medium CVSS severity Medium 9.9 Developer Very Good Plugins PSID 814e5262b633 Credits LVT-tholv2k Required...

9.9CVSS7.2AI score0.01626EPSS
Exploits0References2Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2024/03/13 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-27972

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Very Good Plugins WP Fusion Lite allows Command Injection.This issue affects WP Fusion Lite: from n/a through 3.41.24...

7.3AI score0.01626EPSS
Exploits0References1
Rows per page
Query Builder