top of page

Posts

[WordPress Auto Featured Image (Auto Post Thumbnail) Plugin](versions 3.9.16 and older) Vulnerable



[WordPress Auto Featured Image (Auto Post Thumbnail) Plugin](versions 3.9.16 and older) Vulnerable to Arbitrary File Upload



Importance (CVSS3.0)

★★★★★★★★★☆ 9.1 / 10  - Critical


Details

A vulnerability of Arbitrary File Upload was discovered in WordPress Auto Featured Image (Auto Post Thumbnail) Plugin.


This vulnerability allows malicious attackers to upload any kinds of files on the target website.


This vulnerability hasn’t been fixed in version 3.9.16.


Solutions

Update WordPress Auto Featured Image (Auto Post Thumbnail) Plugin to the latest version (at least 3.9.26 and older)


Source





We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.







Comments


bottom of page