Lucene search
PatchstackVULNRICHMENT:CVE-2024-32514HistoryApr 17, 2024 - 7:58 a.m.
CVE-2024-32514 WordPress WP Poll Maker plugin <= 3.4 - Authenticated Arbitrary File Upload vulnerability
2024-04-1707:58:32
CWE-434
Patchstack
github.com
3
cve-2024-32514
unrestricted upload
dangerous type
poll maker & voting plugin team
infotheme
wordpress
9.9 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
Unrestricted Upload of File with Dangerous Type vulnerability in Poll Maker & Voting Plugin Team (InfoTheme) WP Poll Maker.This issue affects WP Poll Maker: from n/a through 3.4.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "epoll-wp-voting",
"product": "WP Poll Maker",
"vendor": "Poll Maker & Voting Plugin Team (InfoTheme)",
"versions": [
{
"lessThanOrEqual": "3.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-32514
2024-04-17 08:15:07
cvelist
cvelist
cve
cve
CVE-2024-32514
2024-04-17 08:15:07
wpvulndb
wpvulndb
Poll Maker <= 3.4 - Authenticated (Subscriber+) Arbitrary File Upload
2024-04-23 00:00:00
thn
thn
wordfence
wordfence
9.9 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.0%
Related for VULNRICHMENT:CVE-2024-32514