Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:CD84E6FD-54CF-4FC7-8DC4-993C8E5C3062
HistoryOct 11, 2019 - 12:00 a.m.

ArForms < 4.0 - Unauthenticated Arbitrary File Deletion via Traversal

2019-10-1100:00:00
wpscan.com
8

0.009 Low

EPSS

Percentile

82.5%

JSON

“arf_delete_file in arformcontroller.php allows unauthenticated users to delete an arbitrary file by supplying its full pathname” The vendor contacted the WPScan Team stating that the issue had been resolved in version 4.0.

CPENameOperatorVersion
arformslt4.0

Related

nvd 1
packetstorm 1
prion 1
exploitdb 2
exploitpack 1
cvelist 1
cve 1
nvd
nvd
CVE-2019-16902
2019-09-27 11:15:10
packetstorm
packetstorm
WordPress Arforms 3.7.1 Directory Traversal
2019-10-11 00:00:00
prion
prion
Arbitrary file deletion
2019-09-27 11:15:00
exploitdb
exploitdb
WordPress Plugin Arforms 3.7.1 - Directory Traversal
2019-10-11 00:00:00
WordPress Plugin ARforms 3.7.1 - Arbitrary File Deletion
2019-09-30 00:00:00
exploitpack
exploitpack
WordPress Arforms 3.7.1 - Directory Traversal
2019-10-11 00:00:00
cvelist
cvelist
CVE-2019-16902
2019-09-27 10:56:35
cve
cve
CVE-2019-16902
2019-09-27 11:15:10

0.009 Low

EPSS

Percentile

82.5%

JSON
Related for WPVDB-ID:CD84E6FD-54CF-4FC7-8DC4-993C8E5C3062
nvd1packetstorm1prion1exploitdb2exploitpack1cvelist1cve1