Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:20 a.m.7 views

CVE-2024-3112

The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

4.9CVSS6.8AI score0.00414EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/07/12 6:0 a.m.11 views

CVE-2024-3112 Quotes and Tips < 1.45 - Admin+ Arbitrary File Upload

The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

6.8AI score0.00414EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/12 6:0 a.m.34 views

CVE-2024-3112 Quotes and Tips < 1.45 - Admin+ Arbitrary File Upload

The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

0.00414EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/07/12 12:0 a.m.13 views

WordPress Quotes And Tips Plugin < 1.45 is vulnerable to Arbitrary File Upload

Software Quotes And Tips Type Plugin Vulnerable versions 1.45 Fixed in 1.45 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-3112 Patch priority Low CVSS severity Low 9.1 Developer Claim ownership PSID a96054a32ac9 Credits Peng Zhou zpbrent Required privilege...

4.9CVSS6.9AI score0.00414EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder