mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
839 B
839 B
CVE-2024-5882
&color=brighgreen)
Description
The Ultimate Classified Listings WordPress plugin before 1.3 does not validate the ucl_page and layout parameters allowing unauthenticated users to access PHP files on the server from the listings page
POC
Reference
Github
No PoCs found on GitHub currently.