Cleantalk ≫ Security & Malware Scan

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

9.8

CVE-2024-13365

EPSS 3.74%
Veröffentlicht 12.02.2025 10:15:10
Zuletzt bearbeitet 25.02.2025 18:27:25

The Security & Malware scan by CleanTalk plugin for WordPress is vulnerable to arbitrary file uploads due to the plugin uploading and extracting .zip archives when scanning them for malware through the checkUploadedArchive() function in all versions...

7.5

CVE-2023-5239

Exploit

EPSS 0.03%
Veröffentlicht 27.11.2023 17:15:08
Zuletzt bearbeitet 21.11.2024 08:41:21

The Security & Malware scan by CleanTalk WordPress plugin before 2.121 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to bypass bruteforce protection.

8.8

CVE-2020-36698

Exploit

EPSS 0.26%
Veröffentlicht 20.10.2023 07:15:14
Zuletzt bearbeitet 21.11.2024 05:30:05

The Security & Malware scan by CleanTalk plugin for WordPress is vulnerable to unauthorized user interaction in versions up to, and including, 2.50. This is due to missing capability checks on several AJAX actions and nonce disclosure in the source p...

Team-orientierte Vulnerability Management Plattform

Features der Plattform

Cleantalk ≫ Security & Malware Scan

CVE-2024-13365

CVE-2023-5239

CVE-2020-36698