WPS Bidouille <= 1.12.2 - Multiple Issues



Description
CSRF, Stored XSS, Arbitrary File Upload

Affects Plugin

fixed in version 1.12.4

References

URL https://secupress.me/blog/wps-bidouille-v1-12-2-multiples-vulnerabilities/

Classification

Type CSRF
CWE CWE-352

Miscellaneous

Original Researcher Julio Potier
Views 2618
Verified No
WPVDB ID 9472

Timeline

Publicly Published 2019-07-23 (3 months ago)
Added 2019-07-23 (3 months ago)
Last Updated 2019-07-23 (3 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin