RSS   Vulnerabilities for 'Video downloader for tiktok'   RSS

2021-07-07
 
CVE-2020-24142

CWE-918
 

 
Server-side request forgery in the Video Downloader for TikTok (aka downloader-tiktok) plugin 1.3 for WordPress lets an attacker send crafted requests from the back-end server of a vulnerable web application via the njt-tk-download-video parameter. It can help identify open ports, local network hosts and execute command on services

 

 >>> Vendor: Ninjateam 3 Products
Video downloader for tiktok
Filebird
Wp duplicate page


Copyright 2024, cxsecurity.com

 

Back to Top