The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2023-10-16T19:39:11.293Z
Updated: 2024-08-02T07:31:06.651Z
Reserved: 2023-08-31T09:36:18.251Z
Link: CVE-2023-4666
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-10-16T20:15:15.927
Modified: 2023-11-07T04:22:49.533
Link: CVE-2023-4666
Redhat
No data.