ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Really Simple Guest Post Plugin <= 1.0.6 - File Include

Product
Really Simple Guest Post
Description
Because of this vulnerability, an attacker can come directly into the URL /wp-content/plugins/really-simple-guest-post/simple-guest-post-submit.php and send a post data.
Solution
Update the plugin.
Classification
Type Local File Inclusion
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.0.6
Fixed In 1.0.7
Disclosure date
2015-06-05
Credits
Kuroi'SH