Skip to main content
CVE-2021-46114 HIGH POC This Week

jpress v 4.2.0 is vulnerable to RCE via io.jpress.module.product.ProductNotifyKit#doSendEmail. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE Jpress
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
1.7%
CVE-2021-46117 HIGH POC This Week

jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.page.PageNotifyKit#doSendEmail. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE Jpress
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
3.3%
CVE-2021-46118 HIGH POC This Week

jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.article.kit.ArticleNotifyKit#doSendEmail. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Jpress
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
2.8%
CVE-2021-46116 HIGH POC This Week

jpress 4.2.0 is vulnerable to remote code execution via io.jpress.web.admin._TemplateController#doInstall. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload RCE Jpress
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
2.5%
CVE-2021-46115 HIGH POC This Week

jpress 4.2.0 is vulnerable to RCE via io.jpress.web.admin._TemplateController#doUploadFile. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Jpress
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
1.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy