The rtMedia for WordPress, BuddyPress and bbPress WordPress plugin prior to 4.6.16 does not validate files to be uploaded, which could allow attackers with a low-privilege account (e.g. subscribers) to upload arbitrary files such as PHP on the server
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rtcamp rtmedia |