CVE-2024-52429 – WordPress WP Quick Setup plugin <= 2.0 - Arbitrary Plugin and Theme Installation to Remote Code Execution vulnerability

https://notcve.org/view.php?id=CVE-2024-52429

15 Nov 2024 — Unrestricted Upload of File with Dangerous Type vulnerability in Anton Hoelstad WP Quick Setup allows Upload a Web Shell to a Web Server.This issue affects WP Quick Setup: from n/a through 2.0. La vulnerabilidad de carga sin restricciones de archivos con tipo peligroso en Anton Hoelstad WP Quick Setup permite cargar un shell web a un servidor web. Este problema afecta a WP Quick Setup: desde n/a hasta 2.0. The WP Quick Setup plugin for WordPress is vulnerable to unauthorized plugin and theme installation du... • https://github.com/RandomRobbieBF/CVE-2024-52429 • CWE-434: Unrestricted Upload of File with Dangerous Type CWE-862: Missing Authorization •