5 matches found
CVE-2024-33556
Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8...
CVE-2024-33556
Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8...
CVE-2024-33556 WordPress XStore Core plugin <= 5.3.8 - Limited Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8...
CVE-2024-33556
CVE-2024-33556 involves the WordPress plugin XStore Core (8theme) with an Unrestricted Upload of File with Dangerous Type vulnerability. Affected versions are XStore Core up to 5.3.8 (root note uses “from n/a through 5.3.8”). Connected sources confirm the issue is a file upload vulnerability, ena...
WordPress XStore Core Plugin <= 5.3.8 is vulnerable to Arbitrary File Upload
Software XStore Core Type Plugin Vulnerable versions = 5.3.8 Fixed in 5.3.9 OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Upload CVE CVE-2024-33556 Patch priority High CVSS severity High 8.2 Developer Claim ownership PSID 108b732f3dae Credits Rafie Muhammad Patchstack...