dimanche 5 avril 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mardi 8 octobre 2019

orbisius-child-theme-creator Plugin up to 1.2.7 on WordPress Access Control admin-ajax.php theme_1/theme_1_file/theme_1_file_contents privilege escalation

A vulnerability classified as critical was found in orbisius-child-theme-creator Plugin up to 1.2.7 on WordPress (WordPress Plugin). This vulnerability affects some unknown processing of the file wp-admin/admin-ajax.php?action=orbisius_ctc_theme_editor_ajax&sub_cmd=save_file of the component Access Control. Upgrading to version 1.2.8 eliminates this vulnerability.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 61

x

Événements SSI