{"uuid": "1de12071-b354-497e-ade7-d4e41ca918b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5441", "type": "exploited", "source": "https://t.me/darkcommunityofficial/1156", "content": "\ud83d\udd25\ud83d\udd25\ud83d\udd25CVE-2024-5441: Arbitrary file uploads in Modern Events Calendar (WordPress plugin), 8.8 rating\u2757\ufe0f\n\nThe vulnerability allows an attacker to upload any file to the server of the affected site, which makes RCE possible. According to Wordfence, hackers are already trying to exploit this vulnerability.\n\nSearch at Netlas.io:\n\ud83d\udc49\ud83c\udffb Link: https://nt.ls/aC1J0\n\ud83d\udc49\ud83c\udffb Dork: http.body:\"plugins/modern-events-calendar\"\n\nRead more: https://www.wordfence.com/threat-intel/vulnerabilities/id/0c007090-9d9b-4ee7-8f77-91abd4373051?source=cve\n\n\ud83c\udf96\ud83c\udf96\ud83c\udf96 @Kelvinseccommunity", "creation_timestamp": "2024-07-10T12:23:47.000000Z"}