Lucene search
WPScanVULNRICHMENT:CVE-2024-0757HistoryJun 04, 2024 - 6:00 a.m.
CVE-2024-0757 Insert or Embed Articulate Content into WordPress <= 4.3000000023 - Author+ Upload to RCE
2024-06-0406:00:02
WPScan
github.com
9
cve-2024-0757
articulate content
wordpress plugin
rce
file upload
zip files
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
The Insert or Embed Articulate Content into WordPress plugin through 4.3000000023 is not properly filtering which file extensions are allowed to be imported on the server, allowing the uploading of malicious code within zip files
CNA Affected
[
{
"vendor": "Unknown",
"product": "Insert or Embed Articulate Content into WordPress",
"versions": [
{
"status": "affected",
"version": "0",
"versionType": "semver",
"lessThanOrEqual": "4.3000000023"
}
],
"defaultStatus": "affected"
}
]Related
nvd
nvd
CVE-2024-0757
2024-06-04 06:15:08
cvelist
cvelist
wpvulndb
wpvulndb
cve
cve
CVE-2024-0757
2024-06-04 06:15:08
githubexploit
githubexploit
Exploit for CVE-2024-0757
2024-06-17 07:46:21
wpexploit
wpexploit
wordfence
wordfence
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-0757