VYPR
Critical severity9.8NVD Advisory· Published Dec 12, 2022· Updated Jun 17, 2026

CVE-2022-3921

CVE-2022-3921

Description

The Listingo WordPress theme before 3.2.7 does not validate files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files and lead to RCE

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.