CVE-2024-13011 | Chimpstudio WP Foodbakery Plugin up to 4.7 on WordPress upload_publisher_profile_image unrestricted upload

Inserito da Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability, which was classified as critical, was found in Chimpstudio WP Foodbakery Plugin up to 4.7 on WordPress. Affected is the function upload_publisher_profile_image. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2024-13011. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-13011 | Chimpstudio WP Foodbakery Plugin up to 4.7 on WordPress upload_publisher_profile_image unrestricted upload

Post correlati

CVE-2025-23419 | F5 NGINX Open Source/NGINX Plus improper authentication (K000149173)

CVE-2024-6076 | WP-FeedStats wp-cart-for-digital-products Plugin up to 8.5.4 on WordPress cross site scripting

CVE-2023-49721 | Canonical LXD on Linux UEFI Shell Local Privilege Escalation

CVE-2024-2022 | Netentsec NS-ASG Application Security Gateway 6.3 list_ipAddressPolicy.php GroupId sql injection