We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Assigner | WPScan |
Reserved | 2024-05-07 |
Published | 2024-06-07 |
Updated | 2024-08-01 |
The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.6 allows unauthenticated users to modify uploaded files in such a way that PHP code can be uploaded when an upload file input is included on a form
CWE-94 Improper Control of Generation of Code ('Code Injection')
mgthuramoemyint
WPScan
https://wpscan.com/vulnerability/dc34dc2d-d5a1-4e28-8507-33f659ead647/