Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in WappPress – Create Mobile App for any WordPress site with our Mobile App Builder in just 1 minute 5.0.3

  • Severity: critical
  • Status: Open
  • Publication: December 5, 2023

The WappPress plugin for WordPress, used to create Mobile Apps for any WordPress site in just 1 minute, is vulnerable to malicious files being uploaded to the site’s server. This vulnerability affects all versions up to, and including, 5.0.3, and is due to the lack of file type validation. This could potentially allow attackers to upload malicious files to the server, which could lead to remote code execution.

Detected in:

WappPress – Convert Site to App Fast – WordPress to Mobile App Builder – Flutter App Builder fixed vulnerable versions:
WappPress – Create Mobile App for any WordPress site with our Flutter Mobile App Builder in just 1 minute fixed vulnerable versions:
WordPress to Mobile App Builder – WappPress – Convert Site to App Fast – Flutter App Builder fixed vulnerable versions:
WordPress to Mobile App Builder – WappPress – Convert Site to App Fast – Flutter Based fixed vulnerable versions:
WappPress – Create Mobile App for any WordPress site with our Mobile App Builder in just 1 minute open vulnerable versions: >= * <= 5.0.3

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.