Vulnerabilities for Crelly slider (...) - CXSECURITY.COM

Vulnerabilities for 'Crelly slider'

2019-09-03

CVE-2019-15866

CWE-434

The crelly-slider plugin before 1.3.5 for WordPress has arbitrary file upload via a PHP file inside a ZIP archive to wp_ajax_crellyslider_importSlider.

Copyright 2024, cxsecurity.com