Vendor

Wordpress.org

1 brief RSS

CVE-2021-47940: WordPress Download From Files Plugin Arbitrary File Upload

WordPress Plugin Download From Files version 1.48 and earlier contains an arbitrary file upload vulnerability (CVE-2021-47940) that allows unauthenticated attackers to upload malicious files by exploiting the AJAX fileupload action.

Download From Files Plugin <= 1.48 cve-2021-47940 wordpress file upload rce plugin vulnerability

1r 1t 1c 5m ago