Vulnerabilidades en nickboss
11 resultadosCVE-2024-9047CRITICALWordPress File Upload <= 4.24.11 - Unauthenticated Path Traversal to Arbitrary File Read and Deletion in wfu_file_downloader.phpEPSS 92.3%CVE-2024-11613CRITICALWordPress File Upload <= 4.24.15 - Unauthenticated Remote Code Execution, Arbitrary File Read, and Arbitrary File DeletionEPSS 4.4%CVE-2023-2688MEDIUMWordPress File Upload / WordPress File Upload Pro <= 4.19.1 - Authenticated (Administrator+) Path TraversalEPSS 1.7%CVE-2024-11635CRITICALWordPress File Upload <= 4.24.12 - Unuathenticated Remote Code ExecutionEPSS 1.4%CVE-2024-9939HIGHWordPress File Upload <= 4.24.13 - Unauthenticated Path Traversal to Arbitrary File Read in wfu_file_downloader.phpEPSS 1.0%CVE-2024-5852MEDIUMWordPress File Upload <= 4.24.7 - Authenticated (Contributor+) Directory TraversalEPSS 0.7%CVE-2024-7301HIGHWordPress File Upload <= 4.24.8 - Unauthenticated Stored Cross-Site Scripting via SVG File UploadEPSS 0.4%CVE-2023-2767MEDIUMWordPress File Upload / WordPress File Upload Pro <= 4.19.1 - Authenticated (Administrator+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2024-2847MEDIUMWordPress File Upload <= 4.24.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.4%CVE-2024-12719MEDIUMWordPress File Upload <= 4.24.15 - Missing Authorization to Authenticated (Subscriber+) Limited Path TraversalEPSS 0.3%CVE-2024-13494MEDIUMWordPress File Upload <= 4.25.2 - Cross-Site Request Forgery in wfu_file_detailsEPSS 0.2%