exploitDog

GHSA-7x7j-52gx-4h55

Опубликовано: 18 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 is vulnerable to arbitrary file upload due to insufficient checks in a plugin shortcode.

The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 is vulnerable to arbitrary file upload due to insufficient checks in a plugin shortcode.

Ссылки

EPSS

Процентиль: 58%

0.00364

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2023-4311

CVSS3: 8.8

nvd

около 2 лет назад

The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 is vulnerable to arbitrary file upload due to insufficient checks in a plugin shortcode.

EPSS

Процентиль: 58%

0.00364

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434