The plugin called “Hash Form – Drag & Drop Form Builder” for WordPress is not secure because it does not check the type of files being uploaded. This means that anyone can upload any type of file to the website, even if they are not authorized. This can potentially allow hackers to upload harmful files that could harm the website or allow them to take control of it.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
