Описание
Authenticated Arbitrary File Upload vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin <= 1.0.1 at WordPress.
Ссылки
- Third Party Advisory
- ProductRelease Notes
- Third Party Advisory
- ProductRelease Notes
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.1 (включая)
cpe:2.3:a:uploading_svg\,_webp_and_ico_files_project:uploading_svg\,_webp_and_ico_files:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 83%
0.01851
Низкий
7.2 High
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 7.2
github
больше 3 лет назад
Authenticated Arbitrary File Upload vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin <= 1.0.1 at WordPress.
EPSS
Процентиль: 83%
0.01851
Низкий
7.2 High
CVSS3
Дефекты
CWE-434