ThreatPress

WordPress Vulnerability Database

Back

WordPress Helios Solutions Brand Logo Slider plugin <= 2.1 - Authenticated Arbitrary File Upload vulnerability

Product
Helios Solutions Brand Logo Slider
Description
Authenticated Arbitrary File Upload vulnerability found by Net-Hunter in WordPress Helios Solutions Brand Logo Slider plugin (versions <= 2.1).
Solution
2020-12-03 - we found only notification from wordpress.org plugin repository "This plugin has been closed as of October 21, 2020 and is not available for download. This closure is temporary, pending a full review".
Classification
Type Arbitrary File Upload
References
Vulnerability details
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.1
Fixed In 2.2
Disclosure date
2020-10-21
Credits
Net-Hunter