The Live2DWebCanvas plugin for WordPress has a security vulnerability that allows anyone with Subscriber-level access or higher to delete any file on the server. This can be very dangerous as it could lead to remote code execution, meaning someone could take control of the website. If you have this plugin, make sure to update to version 1.9.12 or higher to fix this issue.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
