exploitDog

GHSA-9g2p-9983-m65g

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP, which could lead to RCE

The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP, which could lead to RCE

Ссылки

EPSS

Процентиль: 95%

0.1664

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-1103

CVSS3: 8.8

nvd

больше 3 лет назад

The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP, which could lead to RCE

EPSS

Процентиль: 95%

0.1664

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434