4 matches found
Exploit for CVE-2024-8743
CVE-2024-8743 PoC Background Proof-of-Concept script for...
WordPress Bit File Manager Plugin <= 6.5.7 is vulnerable to Arbitrary File Upload
Software Bit File Manager Type Plugin Vulnerable versions = 6.5.7 Fixed in 6.5.8 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-8743 Patch priority High CVSS severity High 6.8 Developer Claim ownership PSID c3b2ce42763f Credits TANG Cheuk Hei siunam Required privileg...
CVE-2024-8743
creationtimestamp| type| source ---|---|--- 2024-10-05 09:35:48+00:00| seen| https://t.me/cvedetector/7042 2025-01-09 16:00:08+00:00| published-proof-of-concept| Telegram/i8mTVVBBB-4eBtEQA-ij1HfFL2QcRmfgzYGeQ7Cr6AOY-c 2025-01-10 22:33:25+00:00| seen|...
CVE-2024-8743
The Bit File Manager for WordPress plugin is vulnerable to Limited JavaScript File Upload in all versions up to and including 6.5.7 due to insufficient file-type validation. Authenticated attackers with Subscriber-level access (and above) can upload .css/.js files, enabling Stored Cross-Site Scri...