|Category:||Web application abuses|
|Title:||WordPress File Manager Plugin < 6.9 RCE Vulnerability|
|Summary:||The WordPress plugin File Manager is prone to an unauthenticated remote code; execution vulnerability.|
The WordPress plugin File Manager is prone to an unauthenticated remote code
The WP File Manager plugin contains the elFinder library which is used in a
way that introduced a remote code execution vulnerability which is used in active attacks.
An unauthenticated attacker may upload a shell and execute arbitrary commands.
WordPress File Manager plugin version 6.8 and prior.
Update to version 6.9 or later.
Common Vulnerability Exposure (CVE) ID: CVE-2020-25213|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.