Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting Incorrectly Configured Access Control Security Levels.24.7. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
WordPress
CSRF
File Upload
Wordpress File Upload
NVD
CVSS 3.1
3.5
EPSS
0.2%