Unauthenticated File Upload Vulnerability in Mobile-Friendly-App-Builder-by-EasyTouch Plugin v3.0

Unauthenticated File Upload Vulnerability in Mobile-Friendly-App-Builder-by-EasyTouch Plugin v3.0

CVE-2017-1002000 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Vulnerability in wordpress plugin mobile-friendly-app-builder-by-easytouch v3.0, The code in file ./mobile-friendly-app-builder-by-easytouch/server/images.php doesn't require authentication or check that the user is allowed to upload content.

Learn more about our Wordpress Pen Testing.