4 matches found
CVE-2024-49291
CVE-2024-49291 is an unauthenticated, high-severity (CVSS 3.1: 10.0, CRITICAL) vulnerability in the WordPress plugin Cooked Pro prior to version 1.8.0 that allows unrestricted upload of files with dangerous types. The issue affects Cooked Pro up to v1.7.x; upstream sources confirm a fixed release...
CVE-2024-49291 WordPress Cooked Pro plugin < 1.8.0 - Unauthenticated Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This issue affects Cooked Pro: from n/a before 1.8.0...
CVE-2024-49291 WordPress Cooked Pro plugin < 1.8.0 - Unauthenticated Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This issue affects Cooked Pro: from n/a before 1.8.0...
WordPress Cooked Pro Plugin < 1.8.0 is vulnerable to Arbitrary File Upload
Software Cooked Pro Type Plugin Vulnerable versions 1.8.0 Fixed in 1.8.0 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-49291 Patch priority High CVSS severity High 10 Developer Claim ownership PSID ca91d1c3c8bf Credits RE-ALTER Required privilege Unauthenticated...