User Submitted Posts <= 20190426 - Arbitrary File Upload



Description
Note: Apache + PHP FastCGI required for exploitation 

Affects Plugin

fixed in version 20190501

References

URL https://blog.nintechnet.com/arbitrary-file-upload-vulnerability-in-wordpress-user-submitted-posts-plugin/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Original Researcher NinTechNet
Views 3740
Verified No
WPVDB ID 9330

Timeline

Publicly Published 2019-05-02 (7 months ago)
Added 2019-06-07 (5 months ago)
Last Updated 2019-06-07 (5 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin