CVE-2024-3240 | ConvertPlug Plugin up to 3.5.25 on WordPress code injection

Posted by Angelo Barbosa | May 3, 2024 | CVE

A vulnerability classified as critical was found in ConvertPlug Plugin up to 3.5.25 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to code injection.

This vulnerability is known as CVE-2024-3240. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-3240 | ConvertPlug Plugin up to 3.5.25 on WordPress code injection

Related Posts

CVE-2023-46182 | IBM Sterling Secure Proxy 6.0.3/6.1.0 Web UI cross site scripting (XFDB-269692)

CVE-2024-28739 | Koha ILS up to 23.05 format Privilege Escalation

CVE-2024-1401 | Profile Box Shortcode and Widget Plugin up to 1.2.0 on WordPress cross site scripting

CVE-2024-27036 | Linux Kernel up to 6.6.22/6.7.10/6.8.1 cifs_extend_writeback memory corruption