Unrated severityNVD Advisory· Published Nov 22, 2024· Updated Nov 22, 2024
GEO My WordPress < 4.5 - Admin+ Arbitrary File Upload
CVE-2024-9422
Description
The GEO my WP WordPress plugin before 4.5, gmw-premium-settings WordPress plugin before 3.1 does not sufficiently validate files to be uploaded, which could allow attackers to upload arbitrary files such as PHP on the server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.5+ 1 more
- (no CPE)range: <4.5
- (no CPE)range: 4.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/81320923-767c-43f0-a8eb-b398c306c16f/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.