cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-9849,https://securityvulnerability.io/vulnerability/CVE-2024-9849,3D FlipBook Plugin Vulnerable to Arbitrary File Uploads,"The Real 3D FlipBook WordPress Plugin lacks proper file type validation in its 'r3dfb_save_thumbnail_callback' function, allowing authenticated users with Author-level permissions or higher to upload arbitrary files. This vulnerability poses risks of potential remote code execution, compromising the server's security. All versions up to and including 4.6 are affected.",Wordpress,"Real3d Flipbook Lite – 3d Flipbook, PDF Viewer, PDF Embedder",8.8,HIGH,0.0005000000237487257,false,,false,false,false,,false,false,2024-11-16T03:20:43.463Z,0
CVE-2016-10967,https://securityvulnerability.io/vulnerability/CVE-2016-10967,,The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter.,Wordpress,Real3d Flipbook,6.1,MEDIUM,0.0013500000350177288,false,,false,false,false,,false,false,2019-09-16T12:34:00.000Z,0
CVE-2016-10966,https://securityvulnerability.io/vulnerability/CVE-2016-10966,,The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload.,Wordpress,Real3d Flipbook,7.5,HIGH,0.0013000000035390258,false,,false,false,false,,false,false,2019-09-16T12:33:08.000Z,0
CVE-2016-10965,https://securityvulnerability.io/vulnerability/CVE-2016-10965,,The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion.,Wordpress,Real3d Flipbook,7.5,HIGH,0.0013000000035390258,false,,false,false,false,,false,false,2019-09-16T12:30:45.000Z,0