The estatik plugin before 2.3.1 for... CVE-2016-10959

4.0 AV AC AU C I A
发布: 2019-09-16
修订: 2019-09-16

The estatik plugin before 2.3.1 for WordPress has authenticated arbitrary file upload (exploitable with CSRF) via es_media_images[] to wp-admin/admin-ajax.php.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息