Medium severity6.1NVD Advisory· Published Apr 7, 2018· Updated Jun 17, 2026
CVE-2018-9844
CVE-2018-9844
Description
The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.3.4+ 1 more
- (no CPE)range: <4.3.4
- (no CPE)range: <4.3.4
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/44444/nvdExploitThird Party AdvisoryVDB Entry
- wordpress.org/plugins/wp-file-upload/nvdThird Party Advisory
- www.iptanus.com/new-version-4-3-4-of-wordpress-file-upload-plugin/nvdVendor Advisory
News mentions
0No linked articles in our index yet.