VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Spikes Black Project
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-01-23
CVE-2022-0316
The WeStand WordPress theme before 2.1, footysquare WordPress theme, aidreform WordPress theme, statfort WordPress theme, club-theme WordPress theme, kingclub-theme WordPress theme, spikes WordPress theme, spikes-black WordPress theme, soundblast WordPress theme, bolster WordPress theme from ChimpStudio and PixFill does not have any authorisation and upload validation in the lang_upload.php file, allowing any unauthenticated attacker to upload arbitrary files to the web server.
network
low complexity
chimpgroup
soundblast-project
spikes-black-project
pixfill
club-theme-project
statfort-project
aidreform-project
footysquare-project
critical
9.8
9.8