CVSS 3.1 Score 6.3 of 10 (medium)


Published Oct 17, 2023
Updated: Apr 11, 2024
CWE ID 434


CVE-2011-10004 is a critical vulnerability found in the reciply Plugin up to version 1.1.7 on WordPress. The vulnerability allows for unrestricted upload through the file uploadImage.php, potentially leading to remote attacks. To remediate this issue, it is recommended to upgrade the affected component to version 1.1.8. The vulnerability has a CVSS score of 6.5 and poses a medium risk with low privileges required and no user interaction needed. The impact includes low integrity and confidentiality impact, with low availability impact as well. The CWE ID associated with this vulnerability is CWE-434, which refers to the unrestricted upload of a file with a dangerous type.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2011-10004 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options