Unauthenticated Arbitrary File Upload vulnerability found by Colette Chamberland in WordPress AccessPress Anonymous Post Pro plugin (versions <=3.1.8). Improper sanitization leads make it possible to upload any file with any extension.
Update the WordPress AccessPress Anonymous Post Pro plugin to the latest available version (at least 3.2.0).