Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24311

Disclosure Date: June 01, 2021 (last updated February 22, 2025)
The wp_ajax_upload-remote-file AJAX action of the External Media WordPress plugin before 1.0.34 was vulnerable to arbitrary file uploads via any authenticated users.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0