Security Advisory

CVE-2021-34627

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-07 12:21:32

Last updated 2024-09-16 18:54:22

Assigner Wordfence

State PUBLISHED

Description

A vulnerability in the getSelectedMimeTypesByRole function of the WP Upload Restriction WordPress plugin allows low-level authenticated users to view custom extensions added by administrators. This issue affects versions 2.2.3 and prior.

← Browse all CVEs View on cve.org ↗