Jurredeklijn Wux Blog Editor
2 CVEs affecting Jurredeklijn Wux Blog Editor. Latest disclosed: 2024-10-26. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-9932 | Critical | 9.8 | 2024-10-26 | The Wux Blog Editor plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'wuxbt_insertImageNew' functio… |
CVE-2024-9931 | Critical | 9.8 | 2024-10-26 | The Wux Blog Editor plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.0.0. This is due to missing validation on t… |