Description

WordPress Plugin WordPress File Upload is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin WordPress File Upload version 3.10.0 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.11.0 or latest

References

https://plugins.svn.wordpress.org/wp-file-upload/trunk/readme.txt

Related Vulnerabilities

WordPress Plugin SpamBam Key Calculation Security Bypass (2.1)

WordPress Plugin WordPress Landing Pages Unspecified Vulnerability (2.2.6)

WordPress Plugin YITH WooCommerce Added to Cart Popup Security Bypass (1.3.11)

WordPress Plugin PIKLIST-Rapid development framework Cross-Site Scripting (0.9.4.25)

WordPress 5.4 Multiple Vulnerabilities (5.4 - 5.4)

Severity

High

Tags

Missing Update Unauthenticated File Upload