CVE-2024-52402 WordPress Exclusive Content Password Protect plugin <= 1.1.0 - CSRF to Arbitrary File Upload vulnerability

Cross-Site Request Forgery CSRF vulnerability in Cliconomics Exclusive Content Password Protect allows Upload a Web Shell to a Web Server.This issue affects Exclusive Content Password Protect: from n/a through 1.1.0...

CVE-2024-52401

CVE-2024-52401 affects Hacklog DownloadManager plugin (WordPress). A CSRF to Arbitrary File Upload vulnerability exists in versions 2.1.4 and earlier. The CVE entry notes a high-impact flaw (CVSS v3.1: 9.6, network vector, no privileges, user interaction required, changed scope, complete confiden...

CVE-2024-52401 WordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerability

Cross-Site Request Forgery CSRF vulnerability in HuangYe WuDeng Hacklog DownloadManager hacklog-downloadmanager allows Upload a Web Shell to a Web Server.This issue affects Hacklog DownloadManager: from n/a through = 2.1.4...

CVE-2024-52402

CVE-2024-52402 concerns a CSRF to Arbitrary File Upload vulnerability in WordPress plugin Exclusive Content Password Protect (versions

PT-2024-35240 · Hacklog · Hacklog Downloadmanager

Name of the Vulnerable Software and Affected Versions: Hacklog DownloadManager versions 2.1.4 and earlier Description: A Cross-Site Request Forgery CSRF issue in Hacklog DownloadManager allows attackers to upload a web shell to a web server. This can be exploited by attackers to gain unauthorized...

CVE-2024-52429

Unrestricted Upload of File with Dangerous Type vulnerability in Anton Hoelstad WP Quick Setup allows Upload a Web Shell to a Web Server.This issue affects WP Quick Setup: from n/a through 2.0...

CVE-2024-52429 WordPress WP Quick Setup plugin <= 2.0 - Arbitrary Plugin and Theme Installation to Remote Code Execution vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in AntonHoelstad WP Quick Setup wp-quick-setup allows Upload a Web Shell to a Web Server.This issue affects WP Quick Setup: from n/a through = 2.0...

CVE-2024-52429 WordPress WP Quick Setup plugin <= 2.0 - Arbitrary Plugin and Theme Installation to Remote Code Execution vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in AntonHoelstad WP Quick Setup wp-quick-setup allows Upload a Web Shell to a Web Server.This issue affects WP Quick Setup: from n/a through = 2.0...

CVE-2024-52429

CVE-2024-52429 affects WordPress WP Quick Setup plugin (

THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 11 - Nov 17)

What do hijacked websites, fake job offers, and sneaky ransomware have in common? They're proof that cybercriminals are finding smarter, sneakier ways to exploit both systems and people. This week makes one thing clear: no system, no person, no organization is truly off-limits. Attackers are...

PT-2024-35269 · Anton Hoelstad · Wp Quick Setup

Name of the Vulnerable Software and Affected Versions: Anton Hoelstad WP Quick Setup versions 2.0 and earlier Description: The issue allows an attacker to upload a web shell to a web server, potentially leading to unauthorized access. This is due to an unrestricted upload of file with dangerous...

CVE-2024-52397

Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert Docx2post convert-docx2post allows Upload a Web Shell to a Web Server.This issue affects Convert Docx2post: from n/a through = 1.4...

CVE-2024-52416

Missing Authorization vulnerability in Eugen Bobrowski Debug Tool debug-tool allows Upload a Web Shell to a Web Server.This issue affects Debug Tool: from n/a through = 2.2...

CVE-2024-52406

Unrestricted Upload of File with Dangerous Type vulnerability in wibergsweb CSV to html csv-to-html allows Upload a Web Shell to a Web Server.This issue affects CSV to html: from n/a through = 3.26...

CVE-2024-52400

Unrestricted Upload of File with Dangerous Type vulnerability in Subhasis Laha Gallerio gallerio allows Upload a Web Shell to a Web Server.This issue affects Gallerio: from n/a through = 1.01...

CVE-2024-52403

Unrestricted Upload of File with Dangerous Type vulnerability in Saad Iqbal User Management user-management allows Upload a Web Shell to a Web Server.This issue affects User Management: from n/a through = 1.1...

CVE-2024-52399

Unrestricted Upload of File with Dangerous Type vulnerability in Clarisse K. Writer Helper writer-helper allows Upload a Web Shell to a Web Server.This issue affects Writer Helper: from n/a through = 3.1.6...

CVE-2024-52397

CVE-2024-52397 corresponds to a vulnerability in WordPress plugin Convert Docx2post (Davor Zeljkovic) described as Unrestricted Upload of File with Dangerous Type, enabling an attacker to upload a web shell. Affected versions are listed as n/a through 1.4. Public records indicate this is an Arbit...

CVE-2024-52399

CVE-2024-52399 affects the WordPress plugin Writer Helper (versions

CVE-2024-52400

CVE-2024-52400 affects the WordPress Gallerio plugin up to version 1.01. It is an Unrestricted Upload of a File with Dangerous Type vulnerability, allowing an attacker to upload a web shell and potentially execute arbitrary code on the server. Affected versions are listed as n/a through 1.01. The...