← voltar
CVE-2023-0255

Enable Media Replace < 4.0.2 - Author+ Arbitrary File Upload

CVSS 8.8 HIGHEPSS 1.1%
The Enable Media Replace WordPress plugin before 4.0.2 does not prevent authors from uploading arbitrary files to the site, which may allow them to upload PHP shells on affected sites.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
Unknown · Enable Media Replace

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://wpscan.com/vulnerability/b0239208-1e23-4774-9b8c-9611704a07a0