cleantalk
Vulnerabilities and Security Researches

Error Log Viewer by BestWebSoft, CVE-2021-24761

CVE, Research URL

CVE-2021-24761

Home page URL

Security reports for Error Log Viewer by BestWebSoft

Application

Error Log Viewer by BestWebSoft

Published on
Feb 01, 2022
Research Description
The Error Log Viewer WordPress plugin before 1.1.2 does not perform nonce check when deleting a log file and does not have path traversal prevention, which could allow attackers to make a logged in admin delete arbitrary text files on the web server.
Affected versions
max 1.1.2.
Status
vulnerable
Previous vulnerability researches
Error Log Viewer By WP Guru (CVE-2024-12849) , Jan 08, 2025
Error Log Viewer By WP Guru (CVE-2025-32681) , Apr 13, 2025
Error Log Viewer by BestWebSoft (CVE-2025-9950) , Nov 11, 2025
Error Log Viewer by BestWebSoft (CVE-2017-2171) , Jun 06, 2024
Error Log Viewer by BestWebSoft (CVE-2023-6821) , Jun 06, 2024
New vulnerability
JB News Ticker (CVE-2025-11804) , Nov 11, 2025
My auctions allegro (CVE-2025-10048) , Nov 11, 2025
Sertifier Certificates & Open Badges – Tutor LMS (CVE-2025-53214) , Nov 11, 2025
Toast Mobile Menu – PageSpeed Insights Friendly (CVE-2025-53238) , Nov 11, 2025
Stripe Payment forms for WordPress Plugin – WP Full Pay (CVE-2025-9322) , Nov 11, 2025