CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Gvectors: >> Wpdiscuz >> 7.0.2 Security Vulnerabilities

CVE-2020-24186

A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action.

CVSS Score

10.0

EPSS Score

0.942

Published

2020-08-24

Page 4

Vulnerabilities

Vulnerable Software

Gvectors: >> Wpdiscuz >> 7.0.2 Security Vulnerabilities

Products

Pricing

Contact Us