CVE-2021-24347 – The SP Project & Document Manager WordPress plugin before 4.22 allows users to upload …

14 June 2021

Vuln ID: CVE-2021-24347

Published: 2021-06-14 14:15:08Z

Description: The SP Project & Document Manager WordPress plugin before 4.22 allows users to upload files, however, the plugin attempts to prevent php and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovered that php files could still be uploaded by changing the file extension’s case, for example, from "php" to "pHP".

Source: NVD.NIST.GOV

Date:

14 June 2021

Categorie(s):

NVD

Tag(s):

NVD

An attorney says she saw her library reading habits reflected in mobile ads. That’s not supposed to happen18 May 2024
Gawd, after that week, we wonder what’s next for China and the Western world18 May 2024
[FREE EBOOKS] Cyber Security and Network Security, Build Your Own Programming Language – Second Edition & Four More Best Selling Titles18 May 2024
US Official Warns a Cell Network Flaw Is Being Exploited for Spying18 May 2024
How two brothers allegedly swiped $25M in a 12-second Ethereum heist18 May 2024