VYPR

N5 Upload Form

by WordPress

CVEs (1)

  • CVE-2021-24223CriApr 12, 2021
    risk 0.64cvss 9.8epss 0.02

    The N5 Upload Form WordPress plugin through 1.0 suffers from an arbitrary file upload issue in page where a Form from the plugin is embed, as any file can be uploaded. The uploaded filename might be hard to guess as it's generated with md5(uniqid(rand())), however, in the case…