CVE-2021-25053

CVE-2021-25053

The WP Coder WordPress plugin before 2.5.2 within the wow-company admin menu page allows to include() arbitrary file with PHP extension (as well as with data:// or http:// protocols), thus leading to CSRF RCE.

Source: CVE-2021-25053

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다