Hello Community,
Whizzywig 0.61 has an arbitrary image upload vulnerability. That means that everybody can upload images to a CMSimple installation where Whizzywig 0.61 is running. Not only to the images/ folder, but to any folder which is not write protected.
Therefore I strongly advise against using Whizzywig 0.61. Please contact the vendor for a security patch.
Christoph
Whizzywig 0.61
Whizzywig 0.61
Christoph M. Becker – Plugins for CMSimple_XH
Re: Whizzywig 0.61
It is terrible news to find out about this here.
What can I do without, is there an alternative the CMSimple team recommend?
___________________
Free hosting
What can I do without, is there an alternative the CMSimple team recommend?
___________________
Free hosting