This plugin is prone to remote code execution because of ofc_upload_image.php file parameters ($_GET[ βnameβ ] and $HTTP_RAW_POST_DATA).
Update the plugin.
Vendor | Product | Version | CPE |
---|---|---|---|
strategy11 | formidable_form_builder | * | cpe:2.3:a:strategy11:formidable_form_builder:*:*:*:*:*:wordpress:*:* |