Unrated severityNVD Advisory· Published Apr 18, 2019· Updated Aug 4, 2024
CVE-2019-11223
CVE-2019-11223
Description
An Unrestricted File Upload Vulnerability in the SupportCandy plugin through 2.0.0 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=2.0.0+ 1 more
- (no CPE)range: <=2.0.0
- (no CPE)range: <=2.0.0
Patches
Vulnerability mechanics
References
4- cert.kalasag.com.ph/news/research/vulnerable-wordpress-plugin-lets-you-take-over-websites/mitrex_refsource_MISC
- wordpress.org/plugins/supportcandy/mitrex_refsource_CONFIRM
- wpvulndb.com/vulnerabilities/9488mitrex_refsource_MISC
- www.pluginvulnerabilities.com/2019/04/05/arbitrary-file-upload-vulnerability-in-supportcandy/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.