CVE-2017-20251 | Themeisle Woody Code Snippets up to 3.3.0 REST API /wp/v2/posts code injection (Exploit 41308)

A vulnerability, which was classified as critical, has been found in Themeisle Woody Code Snippets up to 3.3.0. Impacted is an unknown function of the file /wp/v2/posts of the component REST API. This manipulation causes code injection. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is tracked as CVE-2017-20251. The attack is possible to be carried out remotely. Moreover, an exploit is present.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More