1 results (0.002 seconds)
CVSS: 9.8EPSS: 47%CPEs: 1EXPL: 3
CVSS: 9.8EPSS: 47%CPEs: 1EXPL: 3CVE-2017-1002003 – Wp2android <= 1.1.4 - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2017-1002003
07 Mar 2017 — Vulnerability in wordpress plugin wp2android-turn-wp-site-into-android-app v1.1.4, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com. Existe una vulnerabilidad en el plugin wp2android-turn-wp-site-into-android-app v1.1.4 de WordPress. Este plugin incluye software CMS vulnerable sin licencia de http://www.invedion.com/. The Wp2android plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ~/server/images.php file in versions u... • https://packetstorm.news/files/id/141676 • CWE-434: Unrestricted Upload of File with Dangerous Type •