CVE-2021-38360

The wp-publications WordPress plugin is vulnerable to restrictive local file inclusion via the Q_FILE parameter found in the ~/bibtexbrowser.php file which allows attackers to include local zip files and achieve remote code execution, in versions up to and including 0.0.
Configurations

Configuration 1

cpe:2.3:a:wp-publications_project:wp-publications:-:*:*:*:*:wordpress:*:*

Information

Published : 2021-09-10 02:15

Updated : 2021-09-21 02:51


NVD link : CVE-2021-38360

Mitre link : CVE-2021-38360

Products Affected
No products.
CWE