In WordPress before 4.7.3 (wp-admin/plugins.php), unintended files can be deleted by administrators using the plugin deletion functionality.
References
Link | Resource |
---|---|
http://www.debian.org/security/2017/dsa-3815 | Third Party Advisory |
http://www.securityfocus.com/bid/96598 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1037959 | Third Party Advisory VDB Entry |
https://codex.wordpress.org/Version_4.7.3 | Patch Vendor Advisory |
https://github.com/WordPress/WordPress/commit/4d80f8b3e1b00a3edcee0774dc9c2f4c78f9e663 | Issue Tracking Patch Third Party Advisory |
https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/ | Patch Release Notes Vendor Advisory |
https://wpvulndb.com/vulnerabilities/8767 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-03-12T01:00:00
Updated: 2017-11-03T18:57:01
Reserved: 2017-03-11T00:00:00
Link: CVE-2017-6816
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-03-12T01:59:00.270
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-6816
JSON object: View
Redhat Information
No data.
CWE