关键信息 漏洞名称: WordPress Simple WP Events Plugin <= 1.8.17 is vulnerable to Arbitrary File Deletion 优先级: High priority CVSS评分: 7.5 风险: This vulnerability is highly dangerous and expected to become mass exploited. 受影响版本: <= 1.8.17 修复状态: No official fix available 发布时间: 09 April 2025 by Patchstack 报告者: Mika (21 Oct 2024) 早期预警发送时间: 09 Apr 2025 公开发布日期: 11 Apr 2025 漏洞详情 类型: Arbitrary File Deletion 描述: This could allow a malicious actor to delete files from your website. If core files are deleted from your website, it could cause your site to break and stop functioning. 解决方案 建议: Automatically mitigate vulnerabilities and keep your websites safe Patchstack提供的虚拟补丁: Patchstack has issued a virtual patch to mitigate this issue by blocking any attacks until an official fix becomes available, can be tested and be safely applied.