cleantalk
Vulnerabilities and Security Researches

Monsters Editor for WP Super Edit, d0a81ab1a31e3174652a37b761ad1d8c6f260569

CVE, Research URL

d0a81ab1a31e3174652a37b761ad1d8c6f260569

Home page URL

Security reports for Monsters Editor for WP Super Edit

Application

Monsters Editor for WP Super Edit

Published on
Aug 22, 2012
Research Description
Monsters Editor for WP Super Edit [monsters-editor-10-for-wp-super-edit] <= 1.1 (unfixed + closed) Monsters Editor for WP Super Edit <= 1.1 - Arbitrary File Upload The Monsters Editor plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'test.html' page in versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
Affected versions
max 1.1.
Status
vulnerable
Previous vulnerability researches
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2024-37271) , Jul 01, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2023-33999) , Jun 14, 2026
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2022-4974) , Nov 15, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2024-37105) , Jun 24, 2024
Print My Blog &#8211; Print, PDF, &amp; eBook Converter WordPress Plugin (CVE-2025-54740) , Aug 17, 2025
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026