Security Advisory

CVE-2021-24981

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-21 08:45:40

Last updated 2024-08-03 19:49:14

Assigner WPScan

State PUBLISHED

Description

The Directorist WordPress plugin before 7.0.6.2 was vulnerable to Cross-Site Request Forgery to Remote File Upload leading to arbitrary PHP shell uploads in the wp-content/plugins directory.

← Browse all CVEs View on cve.org ↗