Lucene search
User Submitted Posts Security Vulnerabilities - CVSS Score 9 - 10
cve
The User Submitted Posts plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the usp_check_images function in versions up to, and including, 20190312. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites...
9.8CVSS
9.8AI Score
0.017EPSS
2023-06-07 02:15 AM
14
cve
Unrestricted Upload of File with Dangerous Type vulnerability in Jeff Starr User Submitted Posts β Enable Users to Submit Posts from the Front End.This issue affects User Submitted Posts β Enable Users to Submit Posts from the Front End: from n/a through 20230902.
9.8CVSS
9.3AI Score
0.001EPSS
2023-12-20 07:15 PM
48