RSS   Vulnerabilities for 'Profilegrid'   RSS

2019-09-03
 
CVE-2019-15873

CWE-94
 

 
The profilegrid-user-profiles-groups-and-communities plugin before 2.8.6 for WordPress has remote code execution via an wp-admin/admin-ajax.php request with the action=pm_template_preview&html=<?php substring followed by PHP code.

 


Copyright 2024, cxsecurity.com

 

Back to Top