VYPR
Unrated severityNVD Advisory· Published Dec 21, 2021· Updated Aug 3, 2024

Directorist – Business Directory Plugin < 7.0.6.2 - CSRF to Remote File Upload

CVE-2021-24981

Description

The Directorist WordPress plugin before 7.0.6.2 was vulnerable to Cross-Site Request Forgery to Remote File Upload leading to arbitrary PHP shell uploads in the wp-content/plugins directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.