The WP Mail Log WordPress plugin prior to 1.1.3 does not properly validate file extensions uploading files to attach to emails, allowing malicious users to upload PHP files, leading to remote code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wpvibes wp mail log |