Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-0255

Disclosure Date: February 13, 2023 (last updated February 24, 2025)
The Enable Media Replace WordPress plugin before 4.0.2 does not prevent authors from uploading arbitrary files to the site, which may allow them to upload PHP shells on affected sites.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0