Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Twenty20 Image Before-After Malicious Code - CVE-2024-6297 - Vulnerability Database
WP Plugin Twenty20

WordPress Plugin Twenty20 Image Before-After Malicious Code - CVE-2024-6297

Critical
Reference: CVE-2024-6297
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-6297
Title: WordPress Plugin Twenty20 Image Before-After Malicious Code
Overview:

WordPress Plugin Twenty20 Image Before-After contains malicous code. Exploiting this issue may allow an attacker to create a new administrative user account thus compromising the affected application and possibly the webserver or computer. WordPress Plugin Twenty20 Image Before-After version 1.6.3 is affected prior versions may also be affected.