Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Race condition vulnerability in unzip_file in admin/import/class-import-settings.php in the Yoast SEO (wordpress-seo) plugin before 9.2.0 for WordPress allows an SEO Manager to perform command execution on the Operating System via a ZIP import.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress Yoast SEO插件竞争条件漏洞
Vulnerability Description
WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。Yoast SEO(wordpress-seo)plugin是使用在其中的一个搜索引擎优化插件。 WordPress Yoast SEO插件9.2.0之前版本中的admin/import/class-import-settings.php文件的unzip_file存在竞争条件漏洞。攻击者可利用该漏洞在操作系统上执行命令。
CVSS Information
N/A
Vulnerability Type
N/A