Overview
- Description
- The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the mpg_upsert_project_source_block() function in all versions up to, and including, 4.0.2. This makes it possible for authenticated attackers, with editor-level access and above, to delete limited files on the server.
- Source
- security@wordfence.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 2.7
- Impact score
- 1.4
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
- Severity
- LOW
Social media
- Hype score
- Not currently trending
🚨 CVE-2024-10672 (Published: 2024-11-12) - A high-severity vulnerability in the "Multiple Pages Generator" plugin for WordPress versions up to 3.4.8. Users are urged to update to the latest version to mitigate risks. Check the details here: https://t.co/pvDUOMcTp4 #WordPress… ht
@transilienceai
13 Nov 2024
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-10672 (Published: 2024-11-12) - A high-severity vulnerability affects the "Multiple Pages Generator" plugin by Porthas, version 3.4.8. Users are urged to update to the latest version to mitigate risks. For more details, check the code here: https://t.co/pvDUOMcTp4… ht
@transilienceai
13 Nov 2024
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2024-10672 (Published: 2024-11-12) - A high-severity vulnerability in the "Multiple Pages Generator" plugin by Porthas affects versions up to 3.4.8. 🛠️ Remediation: Update to the latest version to mitigate risks. For details, check the code here: https://t.co/4ygJgxJyWW…
@transilienceai
13 Nov 2024
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-10672 The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the mpg_upsert_proj… https://t.co/cJBq6YC5AZ
@CVEnew
12 Nov 2024
410 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:themeisle:multiple_page_generator:*:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "18C25C69-BE98-43A0-83FB-5BB0BDF5FACD",
"versionEndExcluding": "4.0.3"
}
],
"operator": "OR"
}
]
}
]