User Submitted Posts <= 20190426 - Arbitrary File Upload



Description
Note: Apache + PHP FastCGI required for exploitation 

Affects Plugin

fixed in version 20190501

References

URL https://blog.nintechnet.com/arbitrary-file-upload-vulnerability-in-wordpress-user-submitted-posts-plugin/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Original Researcher NinTechNet
Views 1616
Verified No
WPVDB ID 9330

Timeline

Publicly Published 2019-05-02 (about 2 months ago)
Added 2019-06-07 (12 days ago)
Last Updated 2019-06-07 (12 days ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.