CVE-2024-6494 in File Upload Plugininfo

Zusammenfassung

von MITRE • 07.08.2024

The WordPress File Upload WordPress plugin before 4.24.8 does not properly sanitize and escape certain parameters, which could allow unauthenticated users to execute stored cross-site scripting (XSS) attacks.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Zuständig

WPScan

Reservieren

03.07.2024

Veröffentlichung

07.08.2024

Moderieren

akzeptiert

Eintrag

VDB-273857

CPE

bereit

EPSS

0.00342

KEV

nein

Aktivitäten

very low

Quellen

Do you need the next level of professionalism?

Upgrade your account now!