Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Child Theme Creator by Orbisius Arbitrary File Modification - Vulnerability Database
WP Plugin Orbisius Child Theme Creator

WordPress Plugin Child Theme Creator by Orbisius Arbitrary File Modification

Critical
Reference: No Reference
Title: WordPress Plugin Child Theme Creator by Orbisius Arbitrary File Modification
Overview:

WordPress Plugin Child Theme Creator by Orbisius is prone to an arbitrary file modification vulnerability because it fails to properly verify user-supplied input. An attacker can exploit this vulnerability to modify local files in the context of the web server process which may result in privilege escalation other attacks are also possible. WordPress Plugin Child Theme Creator by Orbisius version 1.2.6 is vulnerable prior versions may also be affected.