CVE-2021-25003
N/A
N/A
Summary
The WPCargo Track & Trace WordPress plugin before 6.9.0 contains a file which could allow unauthenticated attackers to write a PHP file anywhere on the web server, leading to RCE
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | WPCargo Track & Trace | 6.9.0 < 6.9.0 | affected |
Weaknesses
- CWE-94: CWE-94 Improper Control of Generation of Code ('Code Injection')
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.