CVE-2023-47873

Опубликовано: 26 мар. 2024

Источник: nvd

CVSS3: 9.1

CVSS3: 7.2

EPSS Средний

Описание

Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator: from n/a through 1.0.9.

Ссылки

https://patchstack.com/database/vulnerability/wp-child-theme-generator/wordpress-wp-child-theme-generator-plugin-1-0-8-arbitrary-file-upload-vulnerability?_s_id=cve
Third Party Advisory
https://patchstack.com/database/vulnerability/wp-child-theme-generator/wordpress-wp-child-theme-generator-plugin-1-0-8-arbitrary-file-upload-vulnerability?_s_id=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wensolutions:wp_child_theme_generator:*:*:*:*:*:wordpress:*:*

Версия до 1.1.3 (исключая)

EPSS

Процентиль: 93%

0.11235

Средний

9.1 Critical

CVSS3

7.2 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-6cr3-7r4p-pwrg

CVSS3: 9.1

github

почти 2 года назад

Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme Generator.This issue affects WP Child Theme Generator: from n/a through 1.0.9.

EPSS

Процентиль: 93%

0.11235

Средний

9.1 Critical

CVSS3

7.2 High

CVSS3

Дефекты

CWE-434