Security Advisory – CVE-2020-12832

Product: Simple File List Vendor : https://elementengage.comVulnerable Version: Simple File List < 4.2.7Category: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')Vendor Notified: 2020-05-03Patched: May 11 2020Researcher(s) : Christian AngelCVE: 2020-12832Simple File List is a free plugin that gives your WordPress website a list of your files allowing your users to open and download them. Users can also upload files if you choose. Simple … Continue reading Security Advisory – CVE-2020-12832