CVE-2021-24248
Business Directory Plugin < 5.11.1 - Authenticated PHP4 Upload to RCE
The Business Directory Plugin – Easy Listing Directories for WordPress WordPress plugin before 5.11.1 did not properly check for imported files, forbidding certain extension via a blacklist approach, allowing administrator to import an archive with a .php4 inside for example, leading to RCE
Productos afectados
Business Directory Team · Business Directory Plugin – Easy Listing Directories for WordPress¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →