ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WP-DBManager plugin <= 2.79.1 - Arbitrary File Deletion vulnerability

Product
WP-DBManager
Description
Arbitrary File Deletion vulnerability found by RIPS in WordPress WP-DBManager plugin (versions <= 2.79.1).
Solution
Update the WordPress WP-DBManager plugin to the latest available version (at least 2.79.2).
Classification
Type Unknown
OWASP Top 10 A7: Missing Function Level Access Control
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.79.1
Fixed In 2.79.2
Disclosure date
2018-11-27
Credits
RIPS Technologies
Submitter
ThreatPress