Arbitrary File Upload leading to RCE in E4J s.r.l. VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 on WordPress allows malicious users to upload and execute dangerous file types (e.g. PHP shell) via the signature upload on the booking form.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vikwp vikbooking hotel booking engine \\& property management system plugin |