ScrollTo Top

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-6320	Scrollto Top ScrollTo Top	Hig	0.57	8.8	0.00		Jul 9, 2024	The ScrollTo Top plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.2.2. This is due to missing nonce validation and missing file type validation in the 'options_page' function. This makes it possible for…

CVE-2024-6320HigJul 9, 2024
Scrollto Top
ScrollTo Top
risk 0.57cvss 8.8epss 0.00
The ScrollTo Top plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.2.2. This is due to missing nonce validation and missing file type validation in the 'options_page' function. This makes it possible for…