3 matches found
CVE-2024-33644
CVE-2024-33644 is an unauthenticated remote code execution vulnerability in the WPCustomify Customify Site Library (WordPress plugin). Technical details across sources show code-injection via improper control of generated code, affecting Customify Site Library versions from 0.0.0 up to and includ...
CVE-2024-33644 WordPress Customify Site Library plugin <= 0.0.9 - Remote Code Execution (RCE) vulnerability
Improper Control of Generation of Code 'Code Injection' vulnerability in WPCustomify Customify Site Library allows Code Injection.This issue affects Customify Site Library: from n/a through 0.0.9...
WordPress Customify Site Library Plugin <= 0.0.9 is vulnerable to Remote Code Execution (RCE)
Software Customify Site Library Type Plugin Vulnerable versions = 0.0.9 Fixed in N/A OWASP Top 10 A5: Security Misconfiguration Classification Remote Code Execution RCE CVE CVE-2024-33644 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID 4794ee1ad1c4 Credits Abdi Pranata...