Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin BLAZE Retail Widget Malicious Code - CVE-2024-6297 - Vulnerability Database
WP Plugin Blaze Widget

WordPress Plugin BLAZE Retail Widget Malicious Code - CVE-2024-6297

Critical
Reference: CVE-2024-6297
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-6297
Title: WordPress Plugin BLAZE Retail Widget Malicious Code
Overview:

WordPress Plugin BLAZE Retail Widget contains malicous code. Exploiting this issue may allow an attacker to create a new administrative user account thus compromising the affected application and possibly the webserver or computer. WordPress Plugin BLAZE Retail Widget versions 2.2.5 - 2.5.2 are affected.