CVE-2024-13011 | Chimpstudio WP Foodbakery Plugin up to 4.7 on WordPress upload_publisher_profile_image unrestricted upload

Inserito da Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability, which was classified as critical, was found in Chimpstudio WP Foodbakery Plugin up to 4.7 on WordPress. Affected is the function upload_publisher_profile_image. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2024-13011. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-13011 | Chimpstudio WP Foodbakery Plugin up to 4.7 on WordPress upload_publisher_profile_image unrestricted upload

Post correlati

CVE-2024-4490 | Elegant Themes Divi Theme, Extra Theme, Divi Page Builder Plugin cross site scripting

CVE-2024-3647 | Premium Addons for Elementor Plugin up to 4.10.28 on WordPress arrow_style cross site scripting

CVE-2024-13303 | Drupal Download All Files up to 2.0.1 authorization

CVE-2022-29946 | NATS Server/Streaming Server Queue Subscription permission