exploitDog

CVE-2024-52408

Опубликовано: 16 нояб. 2024

Источник: nvd

CVSS3: 9.9

EPSS Низкий

Описание

Unrestricted Upload of File with Dangerous Type vulnerability in Team PushAssist Push Notifications for WordPress by PushAssist allows Upload a Web Shell to a Web Server.This issue affects Push Notifications for WordPress by PushAssist: from n/a through 3.0.8.

Ссылки

https://patchstack.com/database/vulnerability/push-notification-for-wp-by-pushassist/wordpress-push-notifications-for-wordpress-by-pushassist-plugin-3-0-8-arbitrary-file-upload-vulnerability?_s_id=cve

EPSS

Процентиль: 62%

0.00426

Низкий

9.9 Critical

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-2592-p5m4-vcrw

CVSS3: 9.9

github

около 1 года назад

Unrestricted Upload of File with Dangerous Type vulnerability in Team PushAssist Push Notifications for WordPress by PushAssist allows Upload a Web Shell to a Web Server.This issue affects Push Notifications for WordPress by PushAssist: from n/a through 3.0.8.

EPSS

Процентиль: 62%

0.00426

Низкий

9.9 Critical

CVSS3

Дефекты

CWE-434