Baggage Freight Shipping Australia 0.1.0 - Unauthenticated Arbitrary File Upload



Description
Unrestricted file upload for unauthorised user in package info upload process allowing arbitrary extension.

Affects Plugin

References

EXPLOITDB 46061
URL https://wordpress.org/plugins/baggage-freight/#description
URL https://alertas.wpdanger.com/plugins/baggage-freight-shipping-australia-010-upload/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Original Researcher Kaimi
Submitter Javier Casares
Submitter Website https://www.javiercasares.com/
Submitter Twitter JavierCasares
Views 1135
Verified No
WPVDB ID 9190

Timeline

Publicly Published 2018-12-24 (29 days ago)
Added 2019-01-07 (15 days ago)
Last Updated 2019-01-07 (15 days ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.