Lucene search
K

6 matches found

Circl
Circl
added 2025/03/27 8:15 p.m.16 views

CVE-2024-4345

creationtimestamp| type| source ---|---|--- 2025-03-27 20:15:48+00:00| seen| https://bsky.app/profile/hackingne.ws/post/3llf4jdmeu42l 2025-03-31 14:10:26+00:00| seen| https://t.me/thehackernews/6584 2025-03-31 21:38:56+00:00| seen|...

9.8CVSS8.9AI score0.01444EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/04 11:59 p.m.9 views

CVE-2024-4345

The Startklar Elementor Addons plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'process' function in the 'startklarDropZoneUploadProcess' class in versions up to, and including, 1.7.13. This makes it possible for unauthenticated attacke...

9.8CVSS8AI score0.01444EPSS
Exploits0References1
NVD
NVD
added 2024/05/07 9:15 a.m.17 views

CVE-2024-4345

The Startklar Elementor Addons plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'process' function in the 'startklarDropZoneUploadProcess' class in versions up to, and including, 1.7.13. This makes it possible for unauthenticated attacke...

9.8CVSS9.9AI score0.01444EPSS
Exploits0References3
CVE
CVE
added 2024/05/07 8:31 a.m.101 views

CVE-2024-4345

CVE-2024-4345 is an unauthenticated arbitrary file-upload vulnerability in Startklar Elementor Addons for WordPress (up to version 1.7.13). The StartklarDropZoneUploadProcess::process function validates file types insufficiently, allowing attackers to upload arbitrary files to the server and pote...

9.8CVSS7.9AI score0.01444EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/07 8:31 a.m.12 views

CVE-2024-4345

The Startklar Elementor Addons plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'process' function in the 'startklarDropZoneUploadProcess' class in versions up to, and including, 1.7.13. This makes it possible for unauthenticated attacke...

9.8CVSS8.3AI score0.01444EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/05/06 12:0 a.m.13 views

WordPress Startklar Elementor Addons Plugin <= 1.7.13 is vulnerable to Arbitrary File Upload

Software Startklar Elementor Addons Type Plugin Vulnerable versions = 1.7.13 Fixed in 1.7.14 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-4345 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 644cf683da36 Credits István Márton Required...

9.8CVSS6.8AI score0.01444EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder