Lucene search
+L

4 matches found

cve
cve
added 2024/10/17 5:20 p.m.52 views

CVE-2024-49291

CVE-2024-49291 is an unauthenticated, high-severity (CVSS 3.1: 10.0, CRITICAL) vulnerability in the WordPress plugin Cooked Pro prior to version 1.8.0 that allows unrestricted upload of files with dangerous types. The issue affects Cooked Pro up to v1.7.x; upstream sources confirm a fixed release...

10CVSS5.2AI score0.00496EPSS
Exploits0References1
cvelist
cvelist
added 2024/10/17 5:20 p.m.24 views

CVE-2024-49291 WordPress Cooked Pro plugin < 1.8.0 - Unauthenticated Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This issue affects Cooked Pro: from n/a before 1.8.0...

10CVSS0.00496EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/10/17 5:20 p.m.13 views

CVE-2024-49291 WordPress Cooked Pro plugin < 1.8.0 - Unauthenticated Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This issue affects Cooked Pro: from n/a before 1.8.0...

10CVSS7AI score0.00496EPSS
Exploits0References1
patchstack
patchstack
added 2024/10/15 12:0 a.m.20 views

WordPress Cooked Pro Plugin < 1.8.0 is vulnerable to Arbitrary File Upload

Software Cooked Pro Type Plugin Vulnerable versions 1.8.0 Fixed in 1.8.0 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-49291 Patch priority High CVSS severity High 10 Developer Claim ownership PSID ca91d1c3c8bf Credits RE-ALTER Required privilege Unauthenticated...

10CVSS6.8AI score0.00496EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder