Lucene search
+L

4 matches found

OSV
OSV
added 2024/07/09 11:15 a.m.6 views

CVE-2024-37418

Unrestricted Upload of File with Dangerous Type vulnerability in Andy Moyle Church Admin allows Upload a Web Shell to a Web Server.This issue affects Church Admin: from n/a through 4.4.6...

9.9CVSS5.8AI score0.00537EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 10:15 a.m.50 views

CVE-2024-37418

CVE-2024-37418 is an Unrestricted Upload of File with Dangerous Type in the WordPress plugin Church Admin (affected up to 4.4.6). The issue allows uploading a web shell to the web server and is rated critical (CVSS 3.1: AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H; base score 9.9). Public sources in the c...

9.9CVSS5.9AI score0.00537EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/09 10:15 a.m.13 views

CVE-2024-37418 WordPress Church Admin plugin <= 4.4.6 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.4.6...

9.9CVSS5.2AI score0.00537EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/04 12:0 a.m.12 views

WordPress Church Admin Plugin <= 4.4.6 is vulnerable to Arbitrary File Upload

Software Church Admin Type Plugin Vulnerable versions = 4.4.6 Fixed in 4.4.7 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-37418 Patch priority High CVSS severity High 9.9 Developer Andy Moyle PSID 3fae9e77c92b Credits Peng Zhou Required privilege Subscriber Publish...

9.9CVSS6.8AI score0.00537EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder