← back
CVE-2017-1002000

CVE-2017-1002000

EPSS 27.4%
Vulnerability in wordpress plugin mobile-friendly-app-builder-by-easytouch v3.0, The code in file ./mobile-friendly-app-builder-by-easytouch/server/images.php doesn't require authentication or check that the user is allowed to upload content.
Affected products
jenova12345 · mobile-friendly-app-builder-by-easytouch
public PoCs found2
cve_referencewww.exploit-db.com/exploits/41540/unverifiedexploitdbwww.exploit-db.com/exploits/41540unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wordpress.org/plugins-wp/mobile-friendly-app-builder-by-easytouch/https://www.exploit-db.com/exploits/41540/http://www.securityfocus.com/bid/96899http://www.securityfocus.com/bid/96905http://www.vapidlabs.com/advisory.php?v=179