GoUrl.io GoURL Wordpress Plugin 1.4.13 and earlier is affected by: CWE-434. The impact is: unauthenticated/unzuthorized Attacker can upload executable file in website. The component is: gourl.php#L5637. The fixed version is: 1.4.14.
[
{
"product": "GoURL Wordpress Plugin",
"vendor": "GoUrl.io",
"versions": [
{
"status": "affected",
"version": "1.4.13 and earlier [fixed: 1.4.14]"
}
]
}
]