Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ Thrive Legacy Rise Theme up to 1.x on WordPress REST API Endpoint unrestricted upload

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š Thrive Legacy Rise Theme up to 1.x on WordPress REST API Endpoint unrestricted upload


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability was found in Thrive Legacy Rise Theme, Luxe Theme, Minus Theme, Ignition Theme, FocusBlog Theme, Squared Theme, Voice WordPress theme, Performag Theme, Pressive Theme and Storied Theme up to 1.x on WordPress (Content Management System). It has been declared as critical. Affected by this vulnerability is an unknown code of the component REST API Endpoint. Upgrading to version 2.0.0 eliminates this vulnerability. ...



๐Ÿ“Œ Thrive Legacy Rise Theme up to 1.x on WordPress REST API Endpoint unrestricted upload


๐Ÿ“ˆ 97.77 Punkte

๐Ÿ“Œ wp-google-maps Plugin up to 7.11.17 on WordPress REST API class.rest-api.php SELECT Statement sql injection


๐Ÿ“ˆ 38.75 Punkte

๐Ÿ“Œ WP Live Chat Support up to 8.0.32 on WordPress REST API REST API Call privilege escalation


๐Ÿ“ˆ 38.75 Punkte

๐Ÿ“Œ CVE-2015-5681 | Powerplay Gallery Plugin 3.3 on WordPress File Upload upload.php unrestricted upload (ID 132671)


๐Ÿ“ˆ 37.01 Punkte

๐Ÿ“Œ Thrive Optimize Plugin REST API api_key access control


๐Ÿ“ˆ 36.2 Punkte

๐Ÿ“Œ CVE-2022-43719 | Apache Superset up to 1.5.2/2.0.0 Legacy REST API Endpoint cross-site request forgery


๐Ÿ“ˆ 35.84 Punkte

๐Ÿ“Œ Hackers Start Exploiting Recent Vulnerabilities in Thrive Theme WordPress Plugins


๐Ÿ“ˆ 33.97 Punkte

๐Ÿ“Œ CVE-2023-6850 | kalcaddle KodExplorer up to 4.51.03 API Endpoint path/file unrestricted upload


๐Ÿ“ˆ 33.2 Punkte

๐Ÿ“Œ CVE-2022-1538 | Theme Demo Import Plugin up to 1.1.0 on WordPress Imported File unrestricted upload


๐Ÿ“ˆ 32.84 Punkte

๐Ÿ“Œ CVE-2022-0316 | WeStand Theme up to 2.0 on WordPress lang_upload.php unrestricted upload


๐Ÿ“ˆ 32.84 Punkte

๐Ÿ“Œ CVE-2015-10087 | UpThemes Theme DesignFolio Plus 1.2 on WordPress unrestricted upload (EDB-36372)


๐Ÿ“ˆ 32.84 Punkte

๐Ÿ“Œ WordPress 4.7.0 REST API class-wp-rest-users-controller.php information disclosure


๐Ÿ“ˆ 32.47 Punkte

๐Ÿ“Œ WordPress bis 4.7.0 REST API class-wp-rest-users-controller.php Information Disclosure


๐Ÿ“ˆ 32.47 Punkte

๐Ÿ“Œ WordPress bis 4.7.0 REST API class-wp-rest-users-controller.php Information Disclosure


๐Ÿ“ˆ 32.47 Punkte

๐Ÿ“Œ CVE-2022-3771 | easyii CMS File Upload Management helpers/Upload.php file unrestricted upload


๐Ÿ“ˆ 32.12 Punkte

๐Ÿ“Œ CVE-2017-15054 | TeamPass up to 2.1.27.8 File Upload upload.files.php Parameter unrestricted upload (ID 865292)


๐Ÿ“ˆ 32.12 Punkte

๐Ÿ“Œ CVE-2023-6887 | saysky ForestBlog up to 20220630 Image Upload /admin/upload/img filename unrestricted upload


๐Ÿ“ˆ 32.12 Punkte

๐Ÿ“Œ CVE-2019-19634 | verot.net class.upload up to 2.0.4 File Extension class.upload.php unrestricted upload


๐Ÿ“ˆ 32.12 Punkte

๐Ÿ“Œ CVE-2023-1970 | yuan1994 tpAdmin 1.3.12 Upload.php Upload file unrestricted upload


๐Ÿ“ˆ 32.12 Punkte

๐Ÿ“Œ What is a REST API? API Endpoint Request Example


๐Ÿ“ˆ 32 Punkte

๐Ÿ“Œ CVE-2023-0477 | Auto Featured Image Plugin prior 3.9.16 on WordPress AJAX Endpoint unrestricted upload


๐Ÿ“ˆ 31.81 Punkte

๐Ÿ“Œ SEMrush: Unrestricted file upload in www.semrush.com > /my_reports/api/v1/upload/image


๐Ÿ“ˆ 31.41 Punkte

๐Ÿ“Œ CVE-2022-34113 | Dataease 1.11.1 Plugin /api/plugin/upload unrestricted upload (ID 2431)


๐Ÿ“ˆ 31.41 Punkte

๐Ÿ“Œ CVE-2022-38638 | Casdoor 1.97.3 /api/upload-resource fullFilePath unrestricted upload (ID 1035)


๐Ÿ“ˆ 31.41 Punkte

๐Ÿ“Œ CVE-2023-23314 | zdir 3.2.0 SSH File /api/upload unrestricted upload (ID 90)


๐Ÿ“ˆ 31.41 Punkte

๐Ÿ“Œ CVE-2023-1484 | xzjie cms up to 1.0.3 /api/upload uploadFile unrestricted upload (I6INIT)


๐Ÿ“ˆ 31.41 Punkte

๐Ÿ“Œ CVE-2019-19595 | Adobe Stock API 4.8 on PrestaShop upload.php unrestricted upload


๐Ÿ“ˆ 31.41 Punkte

๐Ÿ“Œ User Profile Picture Plugin up to 2.4.x on WordPress REST API Endpoint get_users information disclosure


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-1598 | WPQA Builder Plugin up to 5.3 on WordPress REST API Endpoint access control


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-2117 | GiveWP Plugin up to 2.20.2 on WordPress REST API Endpoint /donor-wall information disclosure (ID 2743833)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-3708 | Web Stories Plugin up to 1.24.0 on WordPress REST API Endpoint /v1/hotlink/proxy url server-side request forgery


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-3360 | LearnPress Plugin prior 4.1.7.2 on WordPress REST API Endpoint wp_hash deserialization


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2023-5644 | WP Mail Log Plugin up to 1.1.2 on WordPress REST API Endpoint improper authorization


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ Legacy Malware and Legacy Systems Are Not a Legacy Problem


๐Ÿ“ˆ 30.33 Punkte

๐Ÿ“Œ Opsview Monitor up to 5.3.0/5.4.1 REST Endpoint /rest diagnosticsb2ksy cross site scripting


๐Ÿ“ˆ 30.1 Punkte











matomo