Security Advisory

CVE-2024-9422

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-22 06:00:04

Last updated 2024-11-22 17:52:16

Assigner WPScan

State PUBLISHED

Description

The GEO my WP WordPress plugin before 4.5, gmw-premium-settings WordPress plugin before 3.1 does not sufficiently validate files to be uploaded, which could allow attackers to upload arbitrary files such as PHP on the server.

← Browse all CVEs View on cve.org ↗