3 matches found
CVE-2018-18461
The Arigato Autoresponder and Newsletter aka bft-autoresponder v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments data to models/attachment.php...
CVE-2018-18461
The Arigato Autoresponder and Newsletter aka bft-autoresponder v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments data to models/attachment.php...
CVE-2018-18461
The connected CNVD/NVD entries confirm a concrete vulnerability in the WordPress plugin Arigato Autoresponder and Newsletter (aka bft-autoresponder), version 2.5.1.7. The flaw resides in the models/attachment.php handler and allows remote attackers to execute arbitrary PHP code by supplying PHP c...