Woody Ad Snippets <= 2.2.4 - Multiple Issues



Description
Unauthenticated options import and unauthenticated stored XSS issues which could lead to Remote Code Execution.

Affects Plugin

fixed in version 2.2.5

References

URL https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-woody-ad-snippets-plugin-lead-to-remote-code-execution/

Classification

Type MULTI

Miscellaneous

Original Researcher Jerome Bruandet (nintechnet.com)
Views 1988
Verified No
WPVDB ID 9490

Timeline

Publicly Published 2019-08-02 (23 days ago)
Added 2019-08-02 (22 days ago)
Last Updated 2019-08-02 (22 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin