Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Estatik Subscribe
Filtered by product Estatik
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-10959 1 Estatik 1 Estatik 2019-09-16 4.0 MEDIUM 6.5 MEDIUM
The estatik plugin before 2.3.1 for WordPress has authenticated arbitrary file upload (exploitable with CSRF) via es_media_images[] to wp-admin/admin-ajax.php.
CVE-2016-10958 1 Estatik 1 Estatik 2019-09-16 5.0 MEDIUM 7.5 HIGH
The estatik plugin before 2.3.0 for WordPress has unauthenticated arbitrary file upload via es_media_images[] to wp-admin/admin-ajax.php.