Critical severity9.8NVD Advisory· Published Dec 12, 2022· Updated Jun 17, 2026
CVE-2022-3921
CVE-2022-3921
Description
The Listingo WordPress theme before 3.2.7 does not validate files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files and lead to RCE
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Listingo WordPress themedescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/e39b59b0-f24f-4de5-a21c-c4de34c3a14fnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.