All 7 CVE vulnerabilities found in WordPress File Upload, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-39639 | WordPress File Upload plugin <= 4.24.7 - Broken Access Control + CSRF vulnerability | 4.3 | Medium | 2024-11-01 |
| CVE-2024-6494 | WordPress File Upload < 4.24.8 - Unauthenticated Stored XSS | 6.1AI | MediumAI | 2024-08-07 |
| CVE-2024-6651 | WordPress File Upload < 4.24.8 - Reflected XSS | 6.1AI | MediumAI | 2024-08-06 |
| CVE-2023-4811 | WordPress File Upload < 4.23.3 - Author+ Stored Cross-Site Scripting | 4.8 | - | 2023-10-16 |
| CVE-2021-24962 | WordPress File Upload < 4.16.3 - Contributor+ Path Traversal to RCE CWE-22 | 8.8 | - | 2022-03-28 |
| CVE-2021-24961 | WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via Shortcode CWE-79 | 5.4 | - | 2022-03-07 |
| CVE-2021-24960 | WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via Malicious SVG CWE-434 | 5.4 | - | 2022-03-07 |
All 7 known CVE vulnerabilities affecting WordPress File Upload with full Chinese analysis, references, and POCs where available.