← Voltar para CVEs

CVE-2019-15776

N/A

Descricao

The simple-301-redirects-addon-bulk-uploader plugin before 1.2.5 for WordPress has no protection against 301 redirect rule injection via a CSV file.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado8/29/2019

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

Produtos afetados

webcraftic:simple_301_redirects-addon-bulk_uploader

Fraquezas (CWE)

CWE-601

Referencias

https://threatpost.com/wordpress-plugins-exploited-in-ongoing-attack-researchers-warn/147671/(cve@mitre.org)

https://wordpress.org/plugins/simple-301-redirects-addon-bulk-uploader/#developers(cve@mitre.org)

https://wpvulndb.com/vulnerabilities/9503(cve@mitre.org)

https://threatpost.com/wordpress-plugins-exploited-in-ongoing-attack-researchers-warn/147671/(af854a3a-2127-422b-91ae-364da2661108)

https://wordpress.org/plugins/simple-301-redirects-addon-bulk-uploader/#developers(af854a3a-2127-422b-91ae-364da2661108)

https://wpvulndb.com/vulnerabilities/9503(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.