CVE-2024-25918
WordPress InstaWP Connect plugin <= 0.1.0.8 - Remote Code Execution vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Improper Control of Generation of Code ('Code Injection') vulnerability in InstaWP InstaWP Connect instawp-connect.This issue affects InstaWP Connect: from n/a through <= 0.1.0.8.
| CWE | CWE-94 |
| Vendor | instawp |
| Product | instawp connect |
| Published | Apr 3, 2024 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for instawp instawp connect
Be the first to know when new unknown vulnerabilities affecting instawp instawp connect are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
InstaWP / InstaWP Connect
0 โค 0.1.0.8
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/instawp-connect/vulnerability/wordpress-instawp-connect-plugin-0-1-0-8-remote-code-execution-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/instawp-connect/wordpress-instawp-connect-plugin-0-1-0-8-remote-code-execution-vulnerability?_s_id=cve
Credits
Majed Refaea | Patchstack Bug Bounty Program