CVE-2024-13707 | filipmedia WP Image Uploader Plugin up to 1.0.1 on WordPress gky_image_uploader_main_function cross-site request forgery

Posted by Angelo Barbosa | Jan 30, 2025 | CVE

A vulnerability was found in filipmedia WP Image Uploader Plugin up to 1.0.1 on WordPress. It has been declared as problematic. This vulnerability affects the function gky_image_uploader_main_function. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-13707. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13707 | filipmedia WP Image Uploader Plugin up to 1.0.1 on WordPress gky_image_uploader_main_function cross-site request forgery

Related Posts

CVE-2023-49683 | Kashipara Group Job Portal 1.0 InsertWalkin.php txtDesc sql injection

CVE-2024-37547 | Livemesh Addons for Elementor Plugin up to 8.3.7 on WordPress path traversal

CVE-2024-11125 | GetSimpleCMS 3.3.16 /admin/profile.php cross-site request forgery

CVE-2025-24012 | Umbraco CMS up to 14.3.1/15.1.1 cross site scripting