admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2022/CVE-2022-1540.md
0xMarcio 48a00929ac Removed duplicates
2024-06-18 02:51:15 +02:00

786 B
Raw Permalink Blame History

CVE-2022-1540

Description

The PostmagThemes Demo Import WordPress plugin through 1.0.7 does not validate the imported file, allowing high-privilege users such as admin to upload arbitrary files (such as PHP) leading to RCE.

POC

Reference

Github

No PoCs found on GitHub currently.