ThreatPress

WordPress Vulnerabilities Database

Back

WordPress EWWW Image Optimizer Plugin <= 2.8.3 - Remote Code Execution

Product
EWWW Image Optimizer
Description
Because of this vulnerability, attackers can create a backdoor or take a site down altogether.
Solution
Upgrade this plugin.
Classification
Type Arbitrary Code Execution
OWASP Top 10 A1: Injection
References
Wordfence
WordPress
CVE
Name CVE-N/A
Versions
Affected In <= 2.8.3
Fixed In 2.8.4
Disclosure date
2016-06-09
Submitter
ThreatPress