exploitDog

CVE-2024-52379

Опубликовано: 14 нояб. 2024

Источник: nvd

CVSS3: 10

EPSS Низкий

Описание

Unrestricted Upload of File with Dangerous Type vulnerability in Kinetic Innovative Technologies Sdn Bhd kineticPay for WooCommerce allows Upload a Web Shell to a Web Server.This issue affects kineticPay for WooCommerce: from n/a through 2.0.8.

Ссылки

https://patchstack.com/database/vulnerability/kineticpay-for-woocommerce/wordpress-kineticpay-for-woocommerce-plugin-2-0-8-arbitrary-file-upload-vulnerability?_s_id=cve

EPSS

Процентиль: 70%

0.00655

Низкий

10 Critical

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-9xgh-jgcf-6p6h

CVSS3: 10

github

около 1 года назад

Unrestricted Upload of File with Dangerous Type vulnerability in Kinetic Innovative Technologies Sdn Bhd kineticPay for WooCommerce allows Upload a Web Shell to a Web Server.This issue affects kineticPay for WooCommerce: from n/a through 2.0.8.

EPSS

Процентиль: 70%

0.00655

Низкий

10 Critical

CVSS3

Дефекты

CWE-434