Vulnerability Bulletins

700,000 WordPress Users Affected by Zero-Day Vulnerability in File Manager Plugin


System information

   
Affected software Wordpress

Description

This morning, on September 1, 2020, the Wordfence Threat Intelligence team was alerted to the presence of a vulnerability being actively exploited in File Manager, a WordPress plugin with over 700,000 active installations. This vulnerability allowed unauthenticated users to execute commands and upload malicious files on a target site. A patch was released this morning […]

More info:

https://www.wordfence.com/blog/2020/09/700000-wordpress-users-affected-by-zero-day-vulnerability-in-file-manager-plugin/

Standar resources

Property Value
CVE

Version history

Version Comments Date
1.0 Advisory issued 2020-09-03
Ministerio de Defensa
CNI
CCN
CCN-CERT