2 matches found
CVE-2024-11150
CVE-2024-11150 affects WordPress User Extra Fields (WordPress plugin). The issue is an unauthenticated arbitrary file deletion vulnerability caused by insufficient file path validation in delete_tmp_uploaded_file() across all versions up to and including 16.6. This could allow an unauthenticated ...
CVE-2024-10800
CVE-2024-10800 : WordPress User Extra Fields plugin (