CVE-2024-49652 | ReneeCussack 3D Work In Progress Plugin up to 1.0.3 on WordPress unrestricted upload

Posted by Angelo Barbosa | Oct 23, 2024 | CVE

A vulnerability, which was classified as critical, was found in ReneeCussack 3D Work In Progress Plugin up to 1.0.3 on WordPress. This affects an unknown part. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-49652. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-49652 | ReneeCussack 3D Work In Progress Plugin up to 1.0.3 on WordPress unrestricted upload

Related Posts

CVE-2024-41200 | KMPlayer 4.2.2.65 AVI File memory corruption

CVE-2024-5292 | D-Link Network Assistant 4.0.0.21 DNACore Service uncontrolled search path (ZDI-24-443)

CVE-2024-38369 | xwiki-platform up to 14.x include authorization (GHSA-qcj3-wpgm-qpxh)

CVE-2024-1051 | List Category Posts Plugin up to 0.89.6 on WordPress cross site scripting