CVE-2017-20086

A vulnerability, which was classified as critical, was found in VaultPress Plugin 1.8.4. This affects an unknown part. The manipulation leads to code injection. It is possible to initiate the attack remotely.
References
Link Resource
http://seclists.org/fulldisclosure/2017/Feb/95 Exploit Mailing List Third Party Advisory
https://vuldb.com/?id.97383 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:automattic:vaultpress:1.8.4:*:*:*:*:wordpress:*:*

Information

Published : 2022-06-22 22:15

Updated : 2022-06-29 10:59


NVD link : CVE-2017-20086

Mitre link : CVE-2017-20086


JSON object : View

CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')

Products Affected

automattic

  • vaultpress