Arbitrary File Upload vulnerability not fixed | WordPress.org

kokopelli
(@kokopelli)

8 years, 6 months ago

In addition to the authors’ website being suspect as an attack site (see here), it appears that the plugin Arbitrary File Upload vulnerability as of version 2.4.1. has not been fixed (according to a scan by the Plugin Security Scanner plugin I installed and ran).

See here and here.

Only the Arbitrary File Download vulnerability has apparently been fixed.

https://wordpress.org/plugins/wpmarketplace/

The topic ‘Arbitrary File Upload vulnerability not fixed’ is closed to new replies.

Tags

scan

In: Plugins
0 replies
1 participant
Last reply from: kokopelli
Last activity: 8 years, 6 months ago
Status: not resolved