← voltar
CVE-2018-12426

CVE-2018-12426

EPSS 5.1%
The WP Live Chat Support Pro plugin before 8.0.07 for WordPress is vulnerable to unauthenticated Remote Code Execution due to client-side validation of allowed file types, as demonstrated by a v1/remote_upload request with a .php filename and the image/jpeg content type.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/CodeCabin/wp-live-chat-support/blob/master/readme.txthttps://github.com/RiieCco/write-ups/tree/master/CVE-2018-12426https://wpvulndb.com/vulnerabilities/9697