exploitDog

CVE-2025-23953

Опубликовано: 22 янв. 2025

Источник: nvd

CVSS3: 10

EPSS Низкий

Описание

Unrestricted Upload of File with Dangerous Type vulnerability in Innovative Solutions user files allows Upload a Web Shell to a Web Server. This issue affects user files: from n/a through 2.4.2.

Ссылки

https://patchstack.com/database/wordpress/plugin/user-files/vulnerability/wordpress-user-files-plugin-2-4-2-arbitrary-file-upload-vulnerability?_s_id=cve

EPSS

Процентиль: 46%

0.00236

Низкий

10 Critical

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-mjj5-4qc2-r6g6

CVSS3: 10

github

около 1 года назад

Unrestricted Upload of File with Dangerous Type vulnerability in Innovative Solutions user files allows Upload a Web Shell to a Web Server. This issue affects user files: from n/a through 2.4.2.

EPSS

Процентиль: 46%

0.00236

Низкий

10 Critical

CVSS3

Дефекты

CWE-434