CVE-2024-7257 | YayExtra Plugin up to 1.3.7 on WordPress handle_upload_file unrestricted upload

Inserito da Angelo Barbosa | Ago 3, 2024 | CVE

A vulnerability has been found in YayExtra Plugin up to 1.3.7 on WordPress and classified as critical. This vulnerability affects the function handle_upload_file. The manipulation leads to unrestricted upload.

This vulnerability was named CVE-2024-7257. The attack can be initiated remotely. There is no exploit available.

CVE-2024-7257 | YayExtra Plugin up to 1.3.7 on WordPress handle_upload_file unrestricted upload

Post correlati

CVE-2024-34044 | O-RAN E2T I-Release buildPrometheusList peerInfo null pointer dereference

CVE-2024-33275 | Webbax Super Newsletter Module up to 1.4.21 on PrestaShop product_search.php sql injection

CVE-2024-5158 | Google Chrome prior 125.0.6422.76 V8 type confusion

CVE-2024-1960 | ShopLentor Plugin up to 2.8.1 on WordPress Banner Link cross site scripting