CVE-2024-9593 in Time Clock Pluginالمعلومات

الملخص

بحسب MITRE • 18/10/2024

The Time Clock plugin and Time Clock Pro plugin for WordPress are vulnerable to Remote Code Execution in versions up to, and including, 1.2.2 (for Time Clock) and 1.1.4 (for Time Clock Pro) via the 'etimeclockwp_load_function_callback' function. This allows unauthenticated attackers to execute code on the server. The invoked function's parameters cannot be specified.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

حجز

07/10/2024

إفشاء

18/10/2024

الاعتدال

تمت الموافقة

إدخال

VDB-280907

EPSS

0.12491

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Do you know our Splunk app?

Download it now for free!