CVE-2024-49329

Unrestricted Upload of File with Dangerous Type vulnerability in Vivek Tamrakar WP REST API FNS allows Upload a Web Shell to a Web Server.This issue affects WP REST API FNS: from n/a through 1.0.0.
Configurations

Configuration 1 (hide)

cpe:2.3:a:vivektamrakar:wp_rest_api_fns:*:*:*:*:*:wordpress:*:*

History

24 Oct 2024, 16:05

Type Values Removed Values Added
CPE cpe:2.3:a:vivektamrakar:wp_rest_api_fns:*:*:*:*:*:wordpress:*:*
CVSS v2 : unknown
v3 : 10.0
v2 : unknown
v3 : 9.8
References () https://patchstack.com/database/vulnerability/rest-api-fns/wordpress-wp-rest-api-fns-plugin-1-0-0-arbitrary-file-upload-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/rest-api-fns/wordpress-wp-rest-api-fns-plugin-1-0-0-arbitrary-file-upload-vulnerability?_s_id=cve - Third Party Advisory
First Time Vivektamrakar
Vivektamrakar wp Rest Api Fns

21 Oct 2024, 17:09

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de carga sin restricciones de archivos con tipo peligroso en Vivek Tamrakar WP REST API FNS permite cargar un shell web a un servidor web. Este problema afecta a WP REST API FNS: desde n/a hasta 1.0.0.

20 Oct 2024, 09:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-20 09:15

Updated : 2024-10-24 16:05


NVD link : CVE-2024-49329

Mitre link : CVE-2024-49329

CVE.ORG link : CVE-2024-49329


JSON object : View

Products Affected

vivektamrakar

  • wp_rest_api_fns
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type