Description
WordPress Plugin Post Grid is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to delete arbitrary files in the context of the webserver process. WordPress Plugin Post Grid version 2.0.12 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.13 or latest
References
Related Vulnerabilities
Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.4.6)
WordPress Plugin WP Support Plus Responsive Ticket System Unspecified Vulnerability (8.0.7)
WordPress Plugin WordPress Landing Pages Remote Code Execution (1.9.0)
WordPress Plugin WooCommerce BuddyPress Integration Unspecified Vulnerability (3.2.6.1)