Delete All Comments 2.0 - Unauthenticated Arbitrary File Upload

Affects Plugin

no known fix
- plugin closed

References

URL http://blog.nintechnet.com/arbitrary-file-upload-vulnerability-in-wordpress-delete-all-comments-plugin/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 6709
Verified No
WPVDB ID 8694

Timeline

Publicly Published 2016-12-10 (over 3 years ago)
Added 2016-12-11 (over 3 years ago)
Last Updated 2019-11-01 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin