VYPR

Imagements

by WordPress

CVEs (1)

  • CVE-2021-24236CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.07

    The Imagements WordPress plugin through 1.2.5 allows images to be uploaded in comments, however only checks for the Content-Type in the request to forbid dangerous files. This allows unauthenticated attackers to upload arbitrary files by using a valid image Content-Type along…