CVSS: 8.8EPSS: 1%CPEs: 24EXPL: 1CVE-2024-31210 – PHP file upload bypass via Plugin installer
https://notcve.org/view.php?id=CVE-2024-31210
04 Apr 2024 — WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plugins -> Add New -> Upload Plugin screen in WordPress. If FTP credentials are requested for installation (in order to move the file into place outside of the `uploads` directory) then the uploaded file remains temporary available in the Media Library despite it not being allowed. If the `DISALLOW_FILE_EDIT` constant is set to `true`... • https://github.com/Abo5/CVE-2024-31210 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.8EPSS: 33%CPEs: 1EXPL: 1CVE-2024-31211 – Remote Code Execution in `WP_HTML_Token`
https://notcve.org/view.php?id=CVE-2024-31211
06 Dec 2023 — WordPress is an open publishing platform for the Web. Unserialization of instances of the `WP_HTML_Token` class allows for code execution via its `__destruct()` magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected. WordPress es una plataforma de publicación abierta para la Web. • https://github.com/Abdurahmon3236/-CVE-2024-31211 • CWE-502: Deserialization of Untrusted Data •