AI Score
Confidence
Low
EPSS
Percentile
31.8%
Description The plugin does not properly blacklist files via the forminator_allowed_mime_types function, which could allow administrator to upload arbitrary file. However, RCE can not be achieved due to htaccess configuration.
www.wordfence.com/threat-intel/vulnerabilities/id/13cfa202-ab90-46c0-ab53-00995bfdcaa3