CVE-2024-49314

UNKNOWN 0.0

WordPress JiangQie Free Mini Program plugin <= 2.5.2 - Arbitrary File Upload vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Unrestricted Upload of File with Dangerous Type vulnerability in jiangqie JiangQie Free Mini Program jiangqie-free-mini-program allows Upload a Web Shell to a Web Server.This issue affects JiangQie Free Mini Program: from n/a through <= 2.5.2.

CWE	CWE-434
Vendor	jiangqie
Product	jiangqie free mini program
Published	Oct 17, 2024
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for jiangqie jiangqie free mini program

Be the first to know when new unknown vulnerabilities affecting jiangqie jiangqie free mini program are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

jiangqie / JiangQie Free Mini Program

0 ≤ 2.5.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/jiangqie-free-mini-program/vulnerability/wordpress-jiangqie-free-mini-program-plugin-2-5-2-arbitrary-file-upload-vulnerability?_s_id=cve

Credits

stealthcopter | Patchstack Bug Bounty Program