3 matches found
CVE-2024-24714
CVE-2024-24714 affects the WordPress Icons Font Loader plugin (bPlugins) up to version 1.1.4, with an Unrestricted Upload of File with Dangerous Type vulnerability. Root cause: unrestricted file uploads of dangerous types. Impact per sources: HIGH (CVSS 3.1 7.2) including potential compromise via...
CVE-2023-46084
CVE-2023-46084 corresponds to the WordPress plugin Icons Font Loader. The vulnerability is an SQL Injection due to improper neutralization of input in Icons Font Loader
CVE-2023-5860
CVE-2023-5860 refers to the Icons Font Loader WordPress plugin vulnerable to arbitrary file uploads due to missing file type validation in the upload function, affecting versions up to and including 1.1.2. The issue requires authenticated access at administrator level or higher, enabling an attac...