The Social Warfare plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 3.5.2 via the ‘swp_url’ parameter. This allows attackers to execute code on the server.
CPE | Name | Operator | Version |
---|---|---|---|
social_warfare | lt | 3.5.3 |