CVE-2024-7384 | Acyba AcyMailing Plugin up to 9.7.2 on WordPress acym_extractArchive unrestricted upload

Inserito da Angelo Barbosa | Ago 21, 2024 | CVE

A vulnerability was found in Acyba AcyMailing Plugin up to 9.7.2 on WordPress. It has been declared as critical. Affected by this vulnerability is the function acym_extractArchive. The manipulation leads to unrestricted upload.

This vulnerability is known as CVE-2024-7384. The attack can be launched remotely. There is no exploit available.

CVE-2024-7384 | Acyba AcyMailing Plugin up to 9.7.2 on WordPress acym_extractArchive unrestricted upload

Post correlati

CVE-2024-37034 | Couchbase Server up to 7.2.4/7.6.0 KV Service inadequate encryption

CVE-2023-45213 | Westermo Lynx 206-F2G 4.24 unknown vulnerability (icsa-24-023-04)

CVE-2024-31235 | WebToffee Comments Import & Export Plugin up to 2.3.5 on WordPress cross-site request forgery

CVE-2024-33050 | Qualcomm Snapdragon Auto up to SSG2115P MBSSID Parser buffer over-read