Vulnerabilities

CVE-2019-16902

by Fred · 27/09/2019

In the ARforms plugin 3.7.1 for WordPress, arf_delete_file in arformcontroller.php allows unauthenticated deletion of an arbitrary file by supplying the full pathname.

Date published : 2019-09-27

http://almorabea.net/cve-2019-16902.txt

Changelog

Similar

Tags: Cybersecurity Alert