logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2022-3989

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-3989

Description:
The Motors WordPress plugin before 1.4.4 does not properly validate uploaded files for dangerous file types (such as .php) in an AJAX action, allowing an attacker to sign up on a victim's WordPress instance, upload a malicious PHP file and attempt to launch a brute-force attack to discover the uploaded payload.
Last updated date:
12/19/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
12/19/2022
Reference url to background

https://wpscan.com/vulnerability/1bd20329-f3a5-466d-81b0-e4ff0ca32091

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy