Unrestricted Upload of Dangerous File Vulnerability Affects Pie Register
CVE-2024-27957

10CRITICAL

Key Information:

Vendor: WordPress
Status: Pie Register
Vendor: CVE Published:; 17 March 2024

What is CVE-2024-27957?

The vulnerability identified allows unauthorized users to upload files of dangerous types to systems utilizing the Pie Register plugin. This could potentially lead to unauthorized access, data manipulation, or execution of malicious code, compromising the security and integrity of the affected websites. The issue impacts all versions of the Pie Register plugin from n/a to 3.8.3.1, making it essential for users to address this risk promptly by applying necessary security measures.

Affected Version(s)

Pie Register <= 3.8.3.1

References

https://patchstack.com/database/vulnerability/pie-registe...

vdb-entry

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 17, 2024
Vulnerability Reserved
Feb 28, 2024

Credit

Rafie Muhammad (Patchstack)

CVE-2024-27957 Data

JSON

WordPress

What is CVE-2024-27957?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit