CVE-2024-49676

Published Oct 23, 2024

Last updated 23 days ago

CVSS medium 6.6

Overview

Description
Unrestricted Upload of File with Dangerous Type vulnerability in Michael Bourne Custom Icons for Elementor allows Upload a Web Shell to a Web Server.This issue affects Custom Icons for Elementor: from n/a through 0.3.3.
Source
audit@patchstack.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.6
Impact score
3.7
Exploitability score
2.3
Vector string
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Severity
MEDIUM

Weaknesses

audit@patchstack.com
CWE-434

Social media

Hype score
Not currently trending

  1. CVE-2024-49676 Unrestricted Upload of File with Dangerous Type vulnerability in Michael Bourne Custom Icons for Elementor allows Upload a Web Shell to a Web Server.This issue affect… https://t.co/DmPYv4hS8w

    @CVEnew

    23 Oct 2024

    233 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References