Описание
The Frontend File Manager Plugin WordPress plugin before 23.5 did not validate a path parameter and ownership of the file, allowing any authenticated users, such as subscribers to delete arbitrary files on the server
EPSS
Процентиль: 8%
0.00028
Низкий
7.7 High
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 7.7
github
около 1 месяца назад
The Frontend File Manager Plugin WordPress plugin before 23.5 did not validate a path parameter and ownership of the file, allowing any authenticated users, such as subscribers to delete arbitrary files on the server
EPSS
Процентиль: 8%
0.00028
Низкий
7.7 High
CVSS3