Wp-file-upload Plugin Vulnerabilità

Sequenza temporale

Versione

2.02
2.12
2.22
2.32
2.42

Contromisure

Official Fix5
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined5

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network5

Autenticazione

Not Defined0
High0
Low1
None4

Interazione dell'utente

Not Defined0
Required1
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤84
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤84
≤90
≤100

VulDB

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤84
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤84
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k5
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k5
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (16): 2.0, 2.1, 2.2, 2.3, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.5, 2.6, 2.7, 3.0, 3.1, 3.2, 3.3, 3.4

Tipo di software: WordPress Plugin

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
22/08/20197.47.2wp-file-upload Plugin File Upload escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2015-9341
22/08/20197.47.2wp-file-upload Plugin File Upload escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-9340
22/08/20197.47.2wp-file-upload Plugin File Upload escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-9339
22/08/20197.47.2wp-file-upload Plugin File Upload escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-9338
20/08/20143.53.4wp-file-upload Plugin wfu_ajaxactions.php wfu_ajax_action_callback cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2014-125110

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!