Unrestricted Access to Supportive XL Folders in Woo-Confirmation-Email Plugin for WordPress

Unrestricted Access to Supportive XL Folders in Woo-Confirmation-Email Plugin for WordPress

CVE-2018-21007 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The woo-confirmation-email plugin before 3.2.0 for WordPress has no blocking of direct access to supportive xl folders inside uploads.

Learn more about our Wordpress Pen Testing.