The estatik plugin before 2.3.0 for WordPress has unauthenticated arbitrary file upload via es_media_images[] to wp-admin/admin-ajax.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-09-16T12:07:47
Updated: 2024-08-06T03:38:56.810Z
Reserved: 2019-09-13T00:00:00
Link: CVE-2016-10958
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-09-16T13:15:10.357
Modified: 2019-09-16T20:47:48.187
Link: CVE-2016-10958
Redhat
No data.