Vulnerabilities > Keydatas

DATE CVE VULNERABILITY TITLE RISK
2024-07-17 CVE-2024-6220 Unrestricted Upload of File with Dangerous Type vulnerability in Keydatas
The ????? (Keydatas) plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the keydatas_downloadImages function in all versions up to, and including, 2.5.2.
network
low complexity
keydatas CWE-434
critical
 9.8
9.8