3 matches found
CVE-2022-1788
Due to missing checks the Change Uploaded File Permissions WordPress plugin through 4.0.0 is vulnerable to CSRF attacks. This can be used to change the file and folder permissions of any folder. This could be problematic when specific files like ini files are made readable for everyone due to thi...
WordPress plugin Change Uploaded File Permissions 跨站请求伪造漏洞
WordPress is a set of blogging platform developed using the PHP language. The WordPress plugin Change Uploaded File Permissions plugin 4.0.0 and earlier versions are vulnerable to cross-site request forgery, which stems from a lack of checks and can be exploited to change the file and folder...
Change Uploaded File Permissions <= 4.0.0 - File Permission Update via CSRF
Due to missing checks the plugin is vulnerable to CSRF attacks. This can be used to change the file and folder permissions of any folder. This could be problematic when specific files like ini files are made readable for everyone due to this. document.getElementById"test".submit;...