Products
Quotes and Tips by BestWebSoft WordPress plugin
- before 1.45
Source
contact@wpscan.com
Tags
CVE-2024-3112 details
Published : July 12, 2024, 6:15 a.m.
Last Modified : July 12, 2024, 12:49 p.m.
Last Modified : July 12, 2024, 12:49 p.m.
Description
The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (for example in multisite setup)
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://wpscan.com/vulnerability/fa6f01d6-aa3b-4452-9c5f-49bb227fea9d/ | contact@wpscan.com |
This website uses the NVD API, but is not approved or certified by it.