WordPress.Kaswara.Modern.VC.Addons.Arbitrary.File.Upload
Description
This indicates an attack attempt to exploit an Arbitrary File Upload Vulnerability in Wordpress Plugin Kaswara Modern VC Addons.
The vulnerability is due to insufficient input validation while uploading files. A remote, unauthenticated attacker can exploit this vulnerability by uploading a crafted file to the target server. Results in the writing of an arbitrary file to the target server, potentially leading to the execution of arbitrary code.
Affected Products
Kaswara Modern VC Addons WordPress plugin through 3.0.1
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
The vendor has not released an advisory or patch regarding this vulnerability.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |