CVE-2023-49815

CVSS 3.1 Score 10.0 of 10 (high)

Details

Published Mar 27, 2024

CWE ID 434

Summary

CVE-2023-49815 is a newly identified vulnerability affecting WappPress, a content management system. The issue involves an Unrestricted File Upload vulnerability where an attacker can upload files of dangerous types, bypassing security restrictions. This vulnerability exists in WappPress versions from n/a through 5.0.3, making all affected installations susceptible to potential attacks. Successful exploitation can lead to serious security consequences, including data breaches and unauthorized access. Users are urged to update their WappPress installations to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/toM0NR
https://www.cve.org/CVERecord?id=CVE-2023-49815
https://nvd.nist.gov/vuln/detail/CVE-2023-49815

Back to Vulnerability Database

CVE-2023-49815

CVSS 3.1 Score 10.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations