Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:37 a.m.6 views

CVE-2024-9660

The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the mjsmgtloaddocumetsnew and mjsmgtloaddocumets functions in all versions up to, and including, 91.5.0. This makes it possible for authenticated attacker...

8.8CVSS7.7AI score0.0103EPSS
Exploits0References1
NVD
NVD
added 2024/11/23 8:15 a.m.21 views

CVE-2024-9660

The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the mjsmgtloaddocumetsnew and mjsmgtloaddocumets functions in all versions up to, and including, 91.5.0. This makes it possible for authenticated attacker...

8.8CVSS0.0103EPSS
Exploits0References2
Circl
Circl
added 2024/11/23 7:40 a.m.5 views

CVE-2024-9660

creationtimestamp| type| source ---|---|--- 2024-11-23 07:40:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113531133777202538...

8.8CVSS6.9AI score0.0103EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/23 7:38 a.m.22 views

CVE-2024-9660 School Management <= 91.5.0 - Authenticated (Student+) Arbitrary File Upload

The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the mjsmgtloaddocumetsnew and mjsmgtloaddocumets functions in all versions up to, and including, 91.5.0. This makes it possible for authenticated attacker...

8.8CVSS0.0103EPSS
Exploits0References2
Rows per page
Query Builder