IP Address Blocker <= 10.3 - CSRF leading to Arbitrary File Upload

Affects Plugin

fixed in version 10.5

References

URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2107010%40ip-address-blocker&old=2103035%40ip-address-blocker

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Views 2484
Verified No
WPVDB ID 9342

Timeline

Publicly Published 2019-06-15 (3 months ago)
Added 2019-06-16 (3 months ago)
Last Updated 2019-06-16 (3 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin