EPSS
Percentile
64.7%
The plugin does not validate file to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP