CVE

CVE-2022-4774

admin

CVE-2022-4774

The Bit Form WordPress plugin before 1.9 does not validate the file types uploaded via itโ€™s file upload form field, allowing unauthenticated users to upload arbitrary files types such as PHP or HTML files to the server, leading to Remote Code Execution.

Source: CVE-2022-4774

Exit mobile version