WordPress INK Official plugin <= 4.1.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by ghsinfosec Patchstack Alliance in WordPress Plugin INK Official versions = 4.1.2...

WordPress INK Official Plugin <= 4.1.2 is vulnerable to Arbitrary File Upload

Software INK Official Type Plugin Vulnerable versions = 4.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-49669 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID 67e983d6f9c5 Credits ghsinfosec Required privilege Contributo...