CVE-2023-4596 in Forminator Plugin정보

요약

\~에 의해 MITRE • 2023. 08. 30.

The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to file type validation occurring after a file has been uploaded to the server in the upload_post_image() function in versions up to, and including, 1.24.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

책임이 있는

Wordfence

예약하다

2023. 08. 29.

모더레이션

수락

항목

VDB-238264

익스플로잇

다운로드

EPSS

0.12749

출처

Do you need the next level of professionalism?

Upgrade your account now!