CVE

CVE-2021-24761

admin

CVE-2021-24761

The Error Log Viewer WordPress plugin through 1.1.1 does not perform nonce check when deleting a log file and does not have path traversal prevention, which could allow attackers to make a logged in admin delete arbitrary text files on the web server.

Source: CVE-2021-24761

Exit mobile version