Business Directory Plugin – Easy Listing Directories for WordPress, CVE-2021-24179
- CVE, Research URL
- Home page URL
-
Security reports for Business Directory Plugin – Easy Listing Directories for WordPress
- Published on
- May 06, 2021
- Research Description
- The Business Directory Plugin – Easy Listing Directories for WordPress WordPress plugin before 5.11 suffered from a Cross-Site Request Forgery issue, allowing an attacker to make a logged in administrator import files. As the plugin also did not validate uploaded files, it could lead to RCE.
- Affected versions
-
max 4.1.14.1.
- Status
-
vulnerable