Lucene search

K

Themexa Security Vulnerabilities

cve
cve

CVE-2020-35235

vendor/elfinder/php/connector.minimal.php in the secure-file-manager plugin through 2.5 for WordPress loads elFinder code without proper access control. Thus, any authenticated user can run the elFinder upload command to achieve remote code execution. NOTE: This vulnerability only affects products....

8.8CVSS

9AI Score

0.005EPSS

2020-12-14 03:15 AM
58
2