Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2020-24142
- EPSS 0.71%
- Published 07.07.2021 14:15:09
- Last modified 21.11.2024 05:14:25
Server-side request forgery in the Video Downloader for TikTok (aka downloader-tiktok) plugin 1.3 for WordPress lets an attacker send crafted requests from the back-end server of a vulnerable web application via the njt-tk-download-video parameter. I...
7.5
CVE-2020-24143
- EPSS 0.91%
- Published 07.07.2021 14:15:09
- Last modified 21.11.2024 05:14:25
Directory traversal in the Video Downloader for TikTok (aka downloader-tiktok) plugin 1.3 for WordPress lets an attacker get access to files that are stored outside the web root folder via the njt-tk-download-video parameter.
1