CVE-2024-13117

State: PUBLISHED · Published: 2025-01-27 · Updated: 2025-02-03 · Assigner: WPScan

Description

The Social Share Buttons for WordPress plugin through 2.7 allows an unauthenticated user to upload arbitrary images and change the path where they are uploaded

CWE

(none)

Affected

Unknown / Social Share Buttons for WordPress — v=0 ≤2.7 [affected]

CVSS

(none)

References

https://wpscan.com/vulnerability/3234cdac-f328-4f1e-a1de-31fbd86aefb9/ exploit, vdb-entry, technical-description

Source

cvelistV5-main/cves/2024/13xxx/CVE-2024-13117.json