CVE-2024-1205 | israelb1 Management App for WooCommerce Plugin up to 1.2.0 on WordPress nouvello_upload_csv_file unrestricted upload

Posted by Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability was found in israelb1 Management App for WooCommerce Plugin up to 1.2.0 on WordPress and classified as critical. Affected by this issue is the function nouvello_upload_csv_file. The manipulation leads to unrestricted upload.

This vulnerability is handled as CVE-2024-1205. The attack may be launched remotely. There is no exploit available.

CVE-2024-1205 | israelb1 Management App for WooCommerce Plugin up to 1.2.0 on WordPress nouvello_upload_csv_file unrestricted upload

Related Posts

CVE-2024-5441 | Modern Events Calendar Plugin up to 7.11.0 on WordPress unrestricted upload

CVE-2023-6278 | Biteship Plugin up to 2.2.24 on WordPress biteship_error/biteship_message cross site scripting

CVE-2023-7069 | Advanced iFrame Plugin up to 2023.10 on WordPress cross site scripting

CVE-2024-10158 | PHPGurukul Boat Booking System 1.0 session_start session fixiation