WordPress Plugin FoxyPress Multiple Vulnerabilities
Reference:
No Reference
Title:
WordPress Plugin FoxyPress Multiple Vulnerabilities
Overview:
WordPress Plugin FoxyPress is prone to multiple SQL injection arbitrary file upload cross-site scripting and cross-site request forgery vulnerabilities. A successful exploit may allow an attacker to gain unauthorized access and perform certain administrative actions compromise the application disclose potentially sensitive information access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin FoxyPress version 0.4.2.5 is vulnerable other versions may also be affected.