WordPress YayExtra Plugin <= 1.3.7 is vulnerable to Arbitrary File Upload
Software YayExtra Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-7257 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 6980efb16c4d Credits wesley wcraft Required privilege Unauthenticated...