module
WordPress wpDiscuz Unauthenticated File Upload Vulnerability
| Disclosed |
|---|
| Feb 21, 2020 |
Disclosed
Feb 21, 2020
Description
This module exploits an arbitrary file upload in the WordPress wpDiscuz plugin
versions >= `7.0.0` and to upload arbitrary files, including PHP files, and achieve remote code execution on a
vulnerable site's server.
versions >= `7.0.0` and to upload arbitrary files, including PHP files, and achieve remote code execution on a
vulnerable site's server.
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.