Baggage Freight Shipping Australia 0.1.0 - Unauthenticated Arbitrary File Upload



Description
Unrestricted file upload for unauthorised user in package info upload process allowing arbitrary extension.

Affects Plugin

References

ExploitDB 46061
URL https://wordpress.org/plugins/baggage-freight/#description

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Original Researcher Kaimi
Submitter Javier Casares
Submitter Website https://www.javiercasares.com/
Submitter Twitter JavierCasares
Views 6561
Verified No
WPVDB ID 9190

Timeline

Publicly Published 2018-12-24 (over 1 year ago)
Added 2019-01-07 (over 1 year ago)
Last Updated 2019-11-01 (9 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin