2019-08-22 19:39:22
mitre
PUBLISHED
The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.