exploitDog

CVE-2025-24677

Опубликовано: 04 фев. 2025

Источник: nvd

CVSS3: 9.9

EPSS Низкий

Описание

Improper Control of Generation of Code ('Code Injection') vulnerability in WPSpins Post/Page Copying Tool allows Remote Code Inclusion. This issue affects Post/Page Copying Tool: from n/a through 2.0.3.

Ссылки

https://patchstack.com/database/wordpress/plugin/postpage-import-export-with-custom-fields-taxonomies/vulnerability/wordpress-post-page-copying-tool-to-export-and-import-post-page-for-cross-site-migration-plugin-2-0-3-remote-code-execution-rce-vulnerability?_s_id=cve

EPSS

Процентиль: 46%

0.00233

Низкий

9.9 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-xxjw-mqrg-2r3c

CVSS3: 9.9

github

около 1 года назад

Improper Control of Generation of Code ('Code Injection') vulnerability in WPSpins Post/Page Copying Tool allows Remote Code Inclusion. This issue affects Post/Page Copying Tool: from n/a through 2.0.3.

EPSS

Процентиль: 46%

0.00233

Низкий

9.9 Critical

CVSS3

Дефекты

CWE-94