Lucene search
+L

39 matches found

CVE
CVE
added 2025/04/24 8:23 a.m.75 views

CVE-2025-3300

CVE-2025-3300 affects the WordPress plugin WPMasterToolKit (WPMTK) up to version 2.5.2. A directory traversal flaw allows an authenticated attacker with Administrator-level access to read and modify arbitrary server files, exposing sensitive information. Mitigation/Remediation: upgrade to a versi...

7.2CVSS6.7AI score0.00853EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/24 8:23 a.m.7 views

CVE-2025-3300 WPMasterToolKit (WPMTK) – All in one plugin <= 2.5.2 - Authenticated (Administrator+) to Arbitrary File Read and Write

The WPMasterToolKit WPMTK – All in one plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.2. This makes it possible for authenticated attackers, with Administrator-level access and above, to read and modify the contents of arbitrary files on...

7.2CVSS6.5AI score0.00853EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/24 8:23 a.m.41 views

CVE-2025-3300 WPMasterToolKit (WPMTK) – All in one plugin <= 2.5.2 - Authenticated (Administrator+) to Arbitrary File Read and Write

The WPMasterToolKit WPMTK – All in one plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.2. This makes it possible for authenticated attackers, with Administrator-level access and above, to read and modify the contents of arbitrary files on...

7.2CVSS0.00853EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.5 views

PT-2025-17715 · Unknown · Wpmastertoolkit

Name of the Vulnerable Software and Affected Versions: WPMasterToolKit WPMTK versions up to, and including, 2.5.2 Description: The issue allows authenticated attackers with Administrator-level access and above to read and modify the contents of arbitrary files on the server, potentially containin...

7.2CVSS7.3AI score0.00853EPSS
Exploits0References9
GithubExploit
GithubExploit
added 2025/03/18 1:47 a.m.493 views

Exploit for CVE-2024-56249

🛠️ WordPress Master Toolkit Exploit CVE-2024-56249 🌟 Ove...

9.8CVSS9.6AI score0.01977EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/02/05 9:14 a.m.14 views

CVE-2024-56249

Unrestricted Upload of File with Dangerous Type vulnerability in Ludwig You WPMasterToolKit wpmastertoolkit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through = 1.13.1...

9.1CVSS7.4AI score0.01239EPSS
Exploits1References1
NVD
NVD
added 2025/01/02 12:15 p.m.46 views

CVE-2024-56249

Unrestricted Upload of File with Dangerous Type vulnerability in Ludwig You WPMasterToolKit wpmastertoolkit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through = 1.13.1...

9.1CVSS0.01239EPSS
Exploits1References1
NVD
NVD
added 2025/01/02 12:15 p.m.20 views

CVE-2024-56248

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Ludwig You WPMasterToolKit wpmastertoolkit allows Path Traversal.This issue affects WPMasterToolKit: from n/a through = 1.13.1...

4.9CVSS0.00529EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 12:1 p.m.14 views

CVE-2024-56249 WordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Webdeclic WPMasterToolKit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through 1.13.1...

9.1CVSS6.8AI score0.01239EPSS
Exploits1References1
CVE
CVE
added 2025/01/02 12:1 p.m.74 views

CVE-2024-56249

CVE-2024-56249 affects the WordPress plugin WPMasterToolKit (versions

9.1CVSS7.4AI score0.01239EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/02 12:1 p.m.52 views

CVE-2024-56249 WordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Ludwig You WPMasterToolKit wpmastertoolkit allows Upload a Web Shell to a Web Server.This issue affects WPMasterToolKit: from n/a through = 1.13.1...

9.1CVSS0.01239EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/02 12:1 p.m.6 views

CVE-2024-56248 WordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Webdeclic WPMasterToolKit allows Path Traversal.This issue affects WPMasterToolKit: from n/a through 1.13.1...

4.9CVSS6.8AI score0.00529EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 12:1 p.m.53 views

CVE-2024-56248

CVE-2024-56248 is a path traversal vulnerability in Webdeclic WPMasterToolKit (WPMTK) that allows authenticated attackers to download arbitrary files. Affected range includes WPMasterToolKit versions up to and including 1.13.1; root cause: improper limitation of a pathname to a restricted directo...

4.9CVSS7.2AI score0.00529EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/02 12:0 a.m.16 views

PT-2025-3215 · Webdeclic · Webdeclic Wpmastertoolkit

Name of the Vulnerable Software and Affected Versions: Webdeclic WPMasterToolKit versions 1.13.1 and earlier Description: The issue allows for the unrestricted upload of files with dangerous types, enabling the upload of a web shell to a web server. This can lead to unauthorized upload of malicio...

9.1CVSS9.6AI score0.01239EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/01/02 12:0 a.m.3 views

PT-2025-3214 · Webdeclic · Webdeclic Wpmastertoolkit

Name of the Vulnerable Software and Affected Versions: Webdeclic WPMasterToolKit versions 1.13.1 and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a Path Traversal vulnerability. This allows for Path Traversal in Webdecl...

4.9CVSS9.3AI score0.00529EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.4 views

WordPress plugin WPMasterToolKit 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

4.9CVSS8.2AI score0.00529EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.7 views

WordPress plugin WPMasterToolKit 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

9.1CVSS8.8AI score0.01239EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/12/30 4:19 p.m.8 views

WordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by l8BL Patchstack Alliance in WordPress Plugin WPMasterToolKit versions = 1.13.1...

9.1CVSS7AI score0.01239EPSS
Exploits1Affected Software1
Patchstack
Patchstack
added 2024/12/30 4:18 p.m.3 views

WordPress WPMasterToolKit plugin <= 1.13.1 - Arbitrary File Download vulnerability

Arbitrary File Download vulnerability discovered by l8BL Patchstack Alliance in WordPress Plugin WPMasterToolKit versions = 1.13.1...

4.9CVSS7AI score0.00529EPSS
Exploits0Affected Software1
Rows per page
Query Builder