First published: Tue Oct 29 2024(Updated: )
Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail Form allows Upload a Web Shell to a Web Server.This issue affects Multi Purpose Mail Form: from n/a through 1.0.2.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Lindeni Multi Purpose Mail Form | <=1.0.2 | |
WordPress Multi Purpose Mail Form plugin | <=1.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-50484 is classified as a high severity vulnerability due to its potential for allowing unauthorized file uploads.
To fix CVE-2024-50484, ensure that you upgrade the Multi Purpose Mail Form plugin to the latest version beyond 1.0.2.
CVE-2024-50484 is an Unrestricted Upload of File with Dangerous Type vulnerability.
An attacker exploiting CVE-2024-50484 could upload a web shell to the server, potentially taking control of the affected system.
CVE-2024-50484 affects Multi Purpose Mail Form versions up to and including 1.0.2.