[WordPress1003 Mortgage Application Plugin](versions 1.73 and older) Vulnerable for Arbitrary File Download
Importance (CVSS3.0)
★★★★★☆☆☆ 7.7 / 10 - High
Details
A vulnerability of Arbitrary File Upload was discovered in WordPress 1003 Mortgage Application Plugin.
Therefore malicious attackers can upload any kinds of files. This can include backdoors that are executed to gain further access to your website.
This vulnerability hasn’t been fixed yet.
Solutions
Disable and delete.
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
Commenti