ГлавнаяУязвимости → CVE-2024-5630
8.8высокая

CVE-2024-5630

Описание

The Insert or Embed Articulate Content into WordPress plugin before 4.3000000024 does not prevent authors from uploading arbitrary files to the site, which may allow them to upload PHP shells on affected sites.

Затрагиваемое ПО
Elearningfreak Insert or embed articulate content
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://wpscan.com/vulnerability/538c875f-4c20-4be0-8098-5bddb7aecff4/https://wpscan.com/vulnerability/538c875f-4c20-4be0-8098-5bddb7aecff4/