cleantalk
Vulnerabilities and Security Researches

Error Log Viewer by BestWebSoft, CVE-2021-24966

CVE, Research URL

CVE-2021-24966

Home page URL

Security reports for Error Log Viewer by BestWebSoft

Application

Error Log Viewer by BestWebSoft

Published on
Mar 14, 2022
Research Description
The Error Log Viewer WordPress plugin through 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outside of the blog folder
Affected versions
max 1.1.2.
Status
vulnerable
Previous vulnerability researches
Error Log Viewer By WP Guru (CVE-2024-12849) , Jan 08, 2025
Error Log Viewer By WP Guru (CVE-2025-32681) , Apr 13, 2025
Error Log Viewer by BestWebSoft (CVE-2025-9950) , Nov 11, 2025
Error Log Viewer by BestWebSoft (CVE-2017-2171) , Jun 06, 2024
Error Log Viewer by BestWebSoft (CVE-2023-6821) , Jun 06, 2024
New vulnerability
JB News Ticker (CVE-2025-11804) , Nov 11, 2025
My auctions allegro (CVE-2025-10048) , Nov 11, 2025
Sertifier Certificates & Open Badges – Tutor LMS (CVE-2025-53214) , Nov 11, 2025
Toast Mobile Menu – PageSpeed Insights Friendly (CVE-2025-53238) , Nov 11, 2025
Stripe Payment forms for WordPress Plugin – WP Full Pay (CVE-2025-9322) , Nov 11, 2025