Dossier
Arbitrary file upload
Coverage of Arbitrary file upload in the Nexus archive.
- Hackers exploit file upload bug in Breeze Cache WordPress plugin
Hackers are exploiting a critical vulnerability in the Breeze Cache WordPress plugin that allows unauthorized arbitrary file uploads to servers. The flaw, which requires no authentication, is being actively used to compromise WordPress sites.
- Hackers exploit critical flaw in Ninja Forms WordPress plugin
A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows unauthenticated arbitrary file uploads, enabling remote code execution. The flaw poses a significant security risk to WordPress users.