CVE-2021-24212

Published: 2021-04-05T19:15Z

Last Modified: 2024-11-21T05:52Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The WooCommerce Help Scout WordPress plugin before 2.9.1 (https://woocommerce.com/products/woocommerce-help-scout/) allows unauthenticated users to upload any files to the site which by default will end up in wp-content/uploads/hstmp. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt