Lucene search
Colette ChamberlandPATCHSTACK:3B7359F179AE85A9CC2C6BF57A4286FDHistoryDec 20, 2017 - 12:00 a.m.
WordPress AccessPress Anonymous Post Pro plugin <=3.1.8 - Unauthenticated Arbitrary File Upload vulnerability
2017-12-2000:00:00
Colette Chamberland
patchstack.com
4
0.056 Low
EPSS
Percentile
93.3%
Unauthenticated Arbitrary File Upload vulnerability found by Colette Chamberland in WordPress AccessPress Anonymous Post Pro plugin (versions <=3.1.8). Improper sanitization leads make it possible to upload any file with any extension.
Solution
Update the WordPress AccessPress Anonymous Post Pro plugin to the latest available version (at least 3.2.0).
| CPE | Name | Operator | Version |
|---|---|---|---|
| accesspress anonymous post pro | le | 3.1.8 |
References
Related
nvd
nvd
CVE-2017-16949
2017-12-19 02:29:41
exploitpack
exploitpack
Accesspress Anonymous Post Pro 3.2.0 - Arbitrary File Upload
2017-12-12 00:00:00
cve
cve
CVE-2017-16949
2017-12-19 02:29:41
wpvulndb
wpvulndb
prion
prion
Input validation
2017-12-19 02:29:00
packetstorm
packetstorm
Accesspress Anonymous Post Pro Unauthenticated Arbitrary File Upload
2017-12-13 00:00:00
zdt
zdt
wpexploit
wpexploit
cvelist
cvelist
CVE-2017-16949
2017-12-18 17:00:00
exploitdb
exploitdb
Accesspress Anonymous Post Pro < 3.2.0 - Arbitrary File Upload
2017-12-12 00:00:00