6.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
The SP Project & Document Manager WordPress plugin through 4.71 is missing validation in its upload function, allowing a user to manipulate the user_id to make it appear that a file was uploaded by another user
user_id
wpscan.com/vulnerability/01427cfb-5c51-4524-9b9d-e09a603bc34c/