WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

IP Address Blocker <= 10.3 - CSRF leading to Arbitrary File Upload

Description

The LionScripts: IP Blocker Lite WordPress plugin was affected by a CSRF leading to Arbitrary File Upload security vulnerability.

Affects Plugins

ip-address-blocker
Fixed in version 10.5

References

URL
https://plugins.trac.wordpress.org/changeset?reponame=&new=2107010%40ip-address-blocker&old=2103035%40ip-address-blocker

Classification

Type

UPLOAD

CWE
CWE-434

Miscellaneous

Verified

No

WPVDB ID
3168aa05-cbc9-4918-ad8f-2a06ecfd3cf5

Timeline

Publicly Published

2019-06-15 (about 3 years ago)

Added

2019-06-16 (about 3 years ago)

Last Updated

2019-06-16 (about 3 years ago)

Our Other Services

WPScan WordPress Security Plugin