CVE-2020-12832
CVE-2020-12832
Vexday Risk Score
40Attention
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 7.1%KEV nãoPoC —Nuclei simMetasploit —Patch —
Lifecycle
13 May 2020Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
WordPress Plugin Simple File List before 4.2.8 is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input.
Affected products
n/a · n/a