The WP Cost Estimation plugin for WordPress is vulnerable to an issue known as “Upload Directory Traversal”. This affects versions of the plugin prior to version 9.660. Attackers are able to take advantage of this vulnerability by using the uploadFormFiles function to overwrite any file of a specific type on a website using this plugin.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
