Wordpress File Upload Project » Wordpress File Upload : Security Vulnerabilities, CVEs,
Cross-site request forgery (CSRF) vulnerability in the WordPress File Upload plugin (wp-file-upload) before 2.4.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin settings via unspecified vectors. NOTE: some of these details are obtained from third party information.
Max CVSS
6.8
EPSS Score
0.10%
Published
2014-08-12
Updated
2014-08-13
1 vulnerabilities found