ThreatPress

WordPress Vulnerabilities Database

Back

WordPress ARForms plugin <= 3.5.1 - Unauthenticated Arbitrary File Deletion vulnerability

Product
ARForms
Description
Unauthenticated Arbitrary File Deletion vulnerability found by Amir Hossein Mahboubi in WordPress ARForms plugin (versions <= 3.5.1).
Solution
Update the WordPress ARForms plugin to the latest available version (at least 3.5.2).
Classification
Type Unknown
References
Plugin page
CVE
Name CVE-N/A
Versions
Affected In <= 3.5.1
Fixed In 3.5.2
Disclosure date
2018-10-29
Credits
Amir Hossein Mahboubi
Submitter
ThreatPress