2 matches found
CVE-2024-6314
CVE-2024-6314 affects the IQ Testimonials WordPress plugin. The Red Hat and Wordfence entries describe a vulnerability in process_image_upload that allows unauthenticated arbitrary file uploads in versions up to and including 2.2.7 due to insufficient file type validation. The impact is high: if ...
WordPress IQ Testimonials Plugin <= 2.2.7 is vulnerable to Arbitrary File Upload
Software IQ Testimonials Type Plugin Vulnerable versions = 2.2.7 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-6314 Patch priority High CVSS severity High 9 Developer Claim ownership PSID 8b1a4c014222 Credits István Márton Required privilege...