CVE-2024-22152 | Product Import Export for WooCommerce Plugin up to 2.3.7 on WordPress upload_import_file unrestricted upload

Inserito da Angelo Barbosa | Gen 18, 2024 | CVE

A vulnerability was found in Product Import Export for WooCommerce Plugin up to 2.3.7 on WordPress. It has been classified as critical. This affects the function upload_import_file. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-22152. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-22152 | Product Import Export for WooCommerce Plugin up to 2.3.7 on WordPress upload_import_file unrestricted upload

Post correlati

CVE-2024-28237 | OctoPrint up to 1.9.3/1.10.0rc2 URL cross site scripting (GHSA-x7mf-wrh9-r76c)

CVE-2024-35695 | Fahad Mahmood WP Docs Plugin up to 2.1.3 on WordPress cross site scripting

CVE-2023-50071 | SourceCodester Customer Support System 1.0 ajax.php id/name sql injection

CVE-2024-26857 | Linux Kernel up to 6.7.9 include/net/inet_ecn.h geneve_rx information disclosure