Crelly Slider <= 1.3.4 - Arbitrary File Upload

Affects Plugin

fixed in version 1.3.5

References

CVE 2019-15866
URL https://blog.nintechnet.com/arbitrary-file-upload-vulnerability-in-wordpress-crelly-slider-plugin/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Original Researcher NinTechNet
Views 4306
Verified No
WPVDB ID 9329

Timeline

Publicly Published 2019-06-06 (8 months ago)
Added 2019-06-07 (8 months ago)
Last Updated 2019-11-28 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin