CVE-2024-52397

UNKNOWN 0.0

WordPress Convert Docx2post plugin <= 1.4 - Arbitrary File Upload vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert Docx2post convert-docx2post allows Upload a Web Shell to a Web Server.This issue affects Convert Docx2post: from n/a through <= 1.4.

CWE	CWE-434
Vendor	davor zeljkovic
Product	convert docx2post
Published	Nov 16, 2024
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for davor zeljkovic convert docx2post

Be the first to know when new unknown vulnerabilities affecting davor zeljkovic convert docx2post are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Davor Zeljkovic / Convert Docx2post

0 ≤ 1.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/convert-docx2post/vulnerability/wordpress-convert-docx2post-plugin-1-4-arbitrary-file-upload-vulnerability?_s_id=cve

Credits

C_T_R_L (Chance) | Patchstack Bug Bounty Program