关键信息 漏洞描述 - 名称: WordPress WP Pipes Plugin <= 1.4.2 is vulnerable to Arbitrary File Deletion - 风险等级: High priority (CVE-86.86) - 影响: This vulnerability is highly dangerous and expected to become mass exploited. 漏洞详情 - 类型: Arbitrary File Deletion - 描述: This could allow a malicious actor to delete files from your website. If core files are deleted from your website, it could cause your site to break and stop functioning. - 受影响版本: <= 1.4.2 - 修复版本: 1.4.3 解决方案 - 自动缓解: Automatically mitigate vulnerabilities and keep your websites safe using Patchstack's virtual patch. - 更新版本: Update to version 1.4.3 or later to remove the vulnerability. 时间线 - 报告者: dim0n9out - 早期预警: Sent out to Patchstack customers on 30 May 2020 - 发布日期: Published by Patchstack on 01 Jun 2020