The vulnerability of the Event Banner plugin for the WordPress content management system allows for unlimited loading of dangerous files, enabling attackers to load and execute arbitrary files.

The vulnerability of the Event Banner plugin for the WordPress content management system is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a malicious actor to download and execute arbitrary files remotely...

PT-2021-3636 · WordPress · Event Banner Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Event Banner WordPress plugin versions prior to 1.4 Description: The issue is related to the lack of verification for uploaded image files, allowing admin accounts to upload arbitrary files, such as .exe or .php, leading to remote code...

WordPress Event Banner plugin <= 1.3 - Arbitrary File Upload vulnerability leading to Remote Code Execution (RCE)

Arbitrary File Upload vulnerability leading to Remote Code Execution RCE discovered by Jin Huang in WordPress Event Banner plugin versions = 1.3. Solution This plugin has been closed as of December 24, 2018 and is not available for download. Reason: Guideline Violation...