WP Job Manager <= 1.26.1 - Unauthenticated Arbitrary File Upload

Affects Plugin

fixed in version 1.26.2

References

PacketStorm 137866
URL https://www.pluginvulnerabilities.com/2017/07/13/image-upload-capability-in-wordpress-plugin-being-abused/
URL https://wordpress.org/support/topic/wp-job-manager-1-26-2-released/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Submitter Nitant Soni
Views 5071
Verified No
WPVDB ID 8908

Timeline

Publicly Published 2016-07-11 (almost 4 years ago)
Added 2017-09-25 (almost 3 years ago)
Last Updated 2019-11-01 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin