Webapp builder 2.0 - Unauthenticated File Upload



Description
Plugin is still affected and has been closed.

Affects Plugin

no known fix
- plugin closed

References

CVE 2017-1002002
ExploitDB 41540
URL https://seclists.org/oss-sec/2017/q1/560
URL http://www.vapidlabs.com/advisory.php?v=181

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 6602
Verified No
WPVDB ID 8773

Timeline

Publicly Published 2017-03-07 (over 3 years ago)
Added 2017-03-08 (over 3 years ago)
Last Updated 2019-11-28 (7 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin