CVE-2024-13908 | bestwebsoft SMTP Plugin up to 1.1.9 on WordPress save_options unrestricted upload

Inserito da Angelo Barbosa | Mar 8, 2025 | CVE

A vulnerability classified as critical was found in bestwebsoft SMTP Plugin up to 1.1.9 on WordPress. This vulnerability affects the function save_options. The manipulation leads to unrestricted upload.

This vulnerability was named CVE-2024-13908. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13908 | bestwebsoft SMTP Plugin up to 1.1.9 on WordPress save_options unrestricted upload

Post correlati

CVE-2024-43521 | Microsoft Windows Server 2012 up to Server 2022 Hyper-V incorrect check of function return value

CVE-2023-41954 | ProfilePress Plugin up to 4.13.1 on WordPress privileges management

CVE-2024-39382 | Adobe After Effects AVI File Parser out-of-bounds (ZDI-24-1199)

CVE-2024-7381 | Geo Controller Plugin up to 8.6.9 on WordPress Shortcode authorization