All 3 CVE vulnerabilities found in WP Image Uploader, with AI-generated Chinese analysis, references, and POCs.
Vendor: filipmedia
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2024-13707 | WP Image Uploader <= 1.0.1 - Cross-Site Request Forgery to Arbitrary File Deletion CWE-352 | 8.8 | High | 2025-01-30 |
| CVE-2024-13720 | WP Image Uploader <= 1.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Deletion CWE-352 | 8.8 | High | 2025-01-30 |
| CVE-2024-13706 | WP Image Uploader <= 1.0.1 - Reflected Cross-Site Scripting CWE-79 | 6.1 | Medium | 2025-01-30 |
All 3 known CVE vulnerabilities affecting WP Image Uploader with full Chinese analysis, references, and POCs where available.