The AR for WordPress plugin for WordPress has a security vulnerability where unauthorized users can upload files with double file extensions. This can potentially allow attackers to upload harmful files, but it is unlikely to be successful on most servers and the files are deleted right away.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
