Vulnerabilities
By Date By Type Known Exploited Assigners CVSS Scores EPSS Scores Search
Vulnerable Software
Vendors Products Version Search
Metasploit Modules CWE Definitions
Articles Blog

Wordpress » Wordpress : Security Vulnerabilities Published In 2021 (Code Execution)

Published in:
2021 January   February   March   April   May   June   July   August   September   October   November   December  
CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9
In CISA KEV Catalog
Copy

CVE-2021-44223

WordPress before 5.8 lacks support for the Update URI plugin header. This makes it easier for remote attackers to execute arbitrary code via a supply-chain attack against WordPress installations that use any plugin for which the slug satisfies the naming constraints of the WordPress.org Plugin Directory but is not yet present in that directory.
Max Base Score
9.8
Published 2021-11-25
Updated 2021-11-30
EPSS 0.58%
1 vulnerabilities found
This web site uses cookies for managing your session and website analytics (Google analytics) purposes as described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close