PT-2023-10266 · Upthemes · Designfolio Plus
Crashbandicot
·
Published
2023-03-07
·
Updated
2024-08-06
·
CVE-2015-10087
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
UpThemes Theme DesignFolio Plus version 1.2
Description
A vulnerability has been found in the software, classified as problematic, which affects an unknown functionality and leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Recommendations
Apply a patch to fix this issue.
Note: Since the product is no longer supported by the maintainer, there might not be an official patch available.
Exploit
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Designfolio Plus