Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:8040
HistoryDec 17, 2018 - 10:10 a.m.

Unrestricted File Upload

2018-12-1710:10:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6

0.002 Low

EPSS

Percentile

53.1%

wordpress is vulnerable to unrestricted file upload. The MIME type of a file upload is not validated to match its file contents and extension, which would allow a remote attacker to upload a malicious file to perform cross-site scripting attacks.