Lucene search
K

11 matches found

Patchstack
Patchstack
added 2025/08/04 9:57 p.m.9 views

WordPress WP Import Export Lite plugin <= 3.9.29 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability

Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by Vincent Fourcade vinceMatsui in WordPress Plugin WP Import Export Lite versions = 3.9.29...

8.8CVSS4.6AI score0.00664EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/07/31 6:51 p.m.5 views

WordPress April Framework plugin <= 5.1 - Authenticated (Subscriber+) Arbitrary File Upload

Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by Lucio Sá in WordPress Plugin April Framework versions = 5.1...

8.8CVSS8.8AI score0.00595EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/07/24 10:39 p.m.13 views

WordPress Droip plugin < 2.5.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Foxyyy in WordPress Plugin Droip versions 2.5.2...

8.8CVSS6.8AI score0.00628EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/07/23 9:3 p.m.16 views

WordPress WPBookit plugin <= 1.0.6 - Unauthenticated Arbitrary File Upload via image_upload_handle Function vulnerability

Unauthenticated Arbitrary File Upload via imageuploadhandle Function vulnerability discovered by theviper17y in WordPress Plugin WPBookit versions = 1.0.6...

9.8CVSS6.8AI score0.01207EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/07/21 10:5 p.m.13 views

WordPress FoxyPress plugin <= 0.4.2.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by WordFence in WordPress Plugin Foxypress versions 0.4.2.2...

9.8CVSS6.8AI score0.02868EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/07/11 9:9 p.m.10 views

WordPress WPBookit plugin <= 1.0.4 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability

Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by theviper17y in WordPress Plugin WPBookit versions = 1.0.4...

8.8CVSS6.8AI score0.00642EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/05/07 12:41 p.m.11 views

WordPress BEAF plugin <= 4.6.10 - Arbitrary File Upload Vulnerability

Arbitrary File Upload Vulnerability discovered by Ryan Kozak in WordPress Plugin BEAF versions = 4.6.10...

9.1CVSS8.2AI score0.00443EPSS
Exploits1Affected Software1
Patchstack
Patchstack
added 2025/04/23 9:59 a.m.7 views

WordPress PowerPress Podcasting <= 11.12.5 - Arbitrary File Upload Vulnerability

Arbitrary File Upload Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin PowerPress Podcasting versions = 11.12.5...

9.9CVSS8.2AI score0.00347EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/21 4:22 p.m.19 views

WordPress Greenshift plugin 11.4-11.4.5 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability

Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by mikemyers in WordPress Plugin Greenshift versions 11.4-11.4.5...

8.8CVSS8.9AI score0.02027EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/04/19 12:14 a.m.9 views

WordPress Wordpress Plugin Smart Product Review plugin <= 1.0.4 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by Keyvan Hardani in WordPress Plugin Smart Product Review versions = 1.0.4...

9.8CVSS6.8AI score0.00638EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/25 3:56 p.m.8 views

CVE-2023-4300 Import XML and RSS Feeds < 2.1.4 - Admin+ Arbitrary File Upload

The Import XML and RSS Feeds WordPress plugin before 2.1.4 does not filter file extensions for uploaded files, allowing an attacker to upload a malicious PHP file, leading to Remote Code Execution...

7.6AI score0.01698EPSS
Exploits2References1
Rows per page
Query Builder