mobile-friendly-app-builder-by-easytouch 3.0 - Unauthenticated File Upload



Description
Plugin is still affected and has been closed.

Affects Plugin

no known fix
- plugin closed

References

CVE 2017-1002000
ExploitDB 41540
URL https://seclists.org/oss-sec/2017/q1/560
URL http://www.vapidlabs.com/advisory.php?v=179

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 6626
Verified No
WPVDB ID 8771

Timeline

Publicly Published 2017-03-06 (over 3 years ago)
Added 2017-03-08 (over 3 years ago)
Last Updated 2019-11-28 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin