CVE-2016-10966

CVE-2016-10966

EPSS 2.6%

The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://mukarramkhalid.com/wordpress-real-3d-flipbook-plugin-exploit/https://wordpress.org/plugins/real3d-flipbook-lite/#developers