Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WordPress PDF Light Viewer Command Injection - CVE-2021-24684 - Vulnerability Database
WP Plugin Pdf Light Viewer

WordPress Plugin WordPress PDF Light Viewer Command Injection - CVE-2021-24684

High
Reference: CVE-2021-24684
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24684
Title: WordPress Plugin WordPress PDF Light Viewer Command Injection
Overview:

WordPress Plugin WordPress PDF Light Viewer is prone to a command injection vulnerability because it fails to properly validate user-supplied input. An attacker can exploit this issue to execute arbitrary commands within the context of the vulnerable application. WordPress Plugin WordPress PDF Light Viewer version 1.4.11 is vulnerable prior versions may also be affected.