Description
WordPress Plugin Stylish Price List is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently upload arbitrary images. WordPress Plugin Stylish Price List version 6.9.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.9.1 or latest
References
Related Vulnerabilities
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8114)
WordPress Plugin Gallery Categories by BestWebSoft Cross-Site Scripting (1.0.8)
SharePoint Improper Input Validation Vulnerability (CVE-2019-0604)
WordPress Plugin Elementor Pro Security Bypass (3.11.6)
Internet Information Services Other Vulnerability (CVE-2002-1182)