Lucene search
K

6 matches found

UbuntuCve
UbuntuCve
added 2024/04/04 11:15 p.m.65 views

CVE-2024-31210

WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plugins - Add New - Upload Plugin screen in WordPress. If FTP credentials are requested for installation in order to move...

8.8CVSS7.1AI score0.00945EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/04/04 10:59 p.m.31 views

CVE-2024-31210

WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plugins - Add New - Upload Plugin screen in WordPress. If FTP credentials are requested for installation in order to move...

8.8CVSS7.8AI score0.00945EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/04/04 10:59 p.m.46 views

CVE-2024-31210 PHP file upload bypass via Plugin installer

WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plugins - Add New - Upload Plugin screen in WordPress. If FTP credentials are requested for installation in order to move...

7.6CVSS7.1AI score0.00945EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/04 10:59 p.m.70 views

CVE-2024-31210 PHP file upload bypass via Plugin installer

WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plugins - Add New - Upload Plugin screen in WordPress. If FTP credentials are requested for installation in order to move...

7.6CVSS7.8AI score0.00945EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/07 12:0 a.m.24 views

WordPress MapPress Maps plugin authorization problem vulnerability

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress MapPress Maps plugin has an authorization problem vulnerability that stems from a lack of authentication measures or...

6.5CVSS1.5AI score0.01484EPSS
Exploits2Affected Software1
NVD
NVD
added 2022/04/04 4:15 p.m.23 views

CVE-2022-0537

The MapPress Maps for WordPress plugin before 2.73.13 allows a high privileged user to bypass the DISALLOWFILEEDIT and DISALLOWFILEMODS settings and upload arbitrary files to the site through the "ajaxsave" function. The file is written relative to the current 's stylesheet directory, and a .php...

7.2CVSS0.01484EPSS
Exploits2References1
Rows per page
Query Builder