Description
WordPress Plugin Social Articles is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently upload files. WordPress Plugin Social Articles version 2.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.5 or latest
References
Related Vulnerabilities
PostgreSQL CVE-2017-7548 Vulnerability (CVE-2017-7548)
WordPress 3.5.1 Multiple Vulnerabilities (2.0 - 3.5.1)
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress SQL Injection (1.4.9)
Atlassian Confluence Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-29450)