The wp-publications WordPress plugin is vulnerable to restrictive local file inclusion via the Q_FILE parameter found in the ~/bibtexbrowser.php file which allows malicious users to include local zip files and achieve remote code execution, in versions up to and including 0.0.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wp-publications project wp-publications - |