RSS   Vulnerabilities for 'One-stop wp migration'   RSS

2022-03-07
 
CVE-2021-24216

CWE-434
 

 
The All-in-One WP Migration WordPress plugin before 7.41 does not validate uploaded files' extension, which allows administrators to upload PHP files on their site, even on multisite installations.

 

 >>> Vendor: Servmask 2 Products
One-stop wp migration
All-in-one wp migration


Copyright 2022, cxsecurity.com

 

Back to Top