Iptanus Wordpress File Upload vulnerabilities
25 known vulnerabilities affecting iptanus/wordpress_file_upload.
Total CVEs
25
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH6MEDIUM14LOW1
Vulnerabilities
Page 2 of 2
CVE-2015-9341HIGHCVSS 7.5fixed in 3.4.12019-08-22
CVE-2015-9341 [HIGH] CWE-434 CVE-2015-9341: The wp-file-upload plugin before 3.4.1 for WordPress has insufficient restrictions on upload of .php
The wp-file-upload plugin before 3.4.1 for WordPress has insufficient restrictions on upload of .php.js files.
nvd
CVE-2015-9339HIGHCVSS 7.5fixed in 2.7.12019-08-22
CVE-2015-9339 [HIGH] CWE-434 CVE-2015-9339: The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js
The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files.
nvd
CVE-2015-9338HIGHCVSS 7.5fixed in 2.5.02019-08-22
CVE-2015-9338 [HIGH] CWE-434 CVE-2015-9338: The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php
The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files.
nvd
CVE-2018-9844MEDIUMCVSS 6.1PoCfixed in 4.3.42018-04-07
CVE-2018-9844 [MEDIUM] CWE-79 CVE-2018-9844: The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes,
The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS.
nvd
CVE-2018-9172MEDIUMCVSS 5.4PoCfixed in 4.3.32018-04-01
CVE-2018-9172 [MEDIUM] CWE-79 CVE-2018-9172: The Iptanus WordPress File Upload plugin before 4.3.3 for WordPress mishandles shortcode attributes.
The Iptanus WordPress File Upload plugin before 4.3.3 for WordPress mishandles shortcode attributes.
nvd
← Previous2 / 2