Lucene search
PRIOn knowledge basePRION:CVE-2021-24663HistorySep 20, 2021 - 10:15 a.m.
Design/Logic Flaw
2021-09-2010:15:00
PRIOn knowledge base
www.prio-n.com
5
0.001 Low
EPSS
Percentile
42.9%
The Simple Schools Staff Directory WordPress plugin through 1.1 does not validate uploaded logo pictures to ensure that are indeed images, allowing high privilege users such as admin to upload arbitrary file like PHP, leading to RCE
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple_schools_staff_directory | le | 1.1 |
Related
cve
cve
CVE-2021-24663
2021-09-20 10:15:09
nvd
nvd
CVE-2021-24663
2021-09-20 10:15:09
wpvulndb
wpvulndb
Simple School Staff Directory <= 1.1 - Admin+ Arbitrary File Upload
2021-08-23 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Simple School Staff Directory <= 1.1 - Admin+ Arbitrary File Upload
2021-08-23 00:00:00
cvelist
cvelist