The Business Directory Plugin – Easy Listing Directories for WordPress WordPress plugin before 5.11 suffered from a Cross-Site Request Forgery issue, allowing an attacker to make a logged in administrator import files. As the plugin also did not validate uploaded files, it could lead to RCE.
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/c0a5cdde-732a-432a-86c2-776df5d130a7 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2021-05-05T18:39:42
Updated: 2021-05-05T18:39:42
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24179
JSON object: View
NVD Information
Status : Modified
Published: 2021-05-06T13:15:11.370
Modified: 2023-11-07T03:31:07.290
Link: CVE-2021-24179
JSON object: View
Redhat Information
No data.
CWE