The WordPress File Upload WordPress plugin prior to 4.23.3 does not sanitise and escape some of its settings, which could allow high privilege users such as contributors to perform Stored Cross-Site Scripting attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
iptanus wordpress file upload |