01642 06 11 11 Arrange Call

Arbitrary File Upload Vulnerability in Advanced Uploader WordPress Plugin

CVE-2022-1103 · HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVE-2022-1103

The Advanced Uploader WordPress plugin through 4.2 allows any authenticated users like subscriber to upload arbitrary files, such as PHP, which could lead to RCE

Learn more about our Wordpress Pen Testing.