A cikin WordPress plugin , wanda aka sanya akan shafuka sama da dubu 80, haɗari mai haɗari wanda ke ba ka damar loda kowane fayil zuwa uwar garken ba tare da tantancewa ba. Hakanan zaka iya loda fayilolin PHP kuma a kashe lambar ku akan sabar. Matsalar tana shafar nau'ikan daga 7.0.0 zuwa 7.0.4 wanda ya haɗa. An daidaita rashin lafiyar a cikin sakin 7.0.5.
wpDiscuz plugin yana ba da damar yin amfani da AJAX don yin sharhi a hankali ba tare da sake loda shafin ba. Lalacewar ta samo asali ne saboda aibi a cikin lambar bincika nau'in fayil da aka ɗora amfani da shi don haɗa hotuna zuwa sharhi. Don iyakance loda fayilolin sabani, ana kiran aikin tantance nau'in MIME ta abun ciki, wanda ke da sauƙin kewayawa don loda fayilolin PHP. Ba a iyakance tsawo na fayil ɗin ba. Misali, zaku iya loda fayil ɗin myphpfile.php, da farko ƙayyade jerin 89 50 4E 47 0D 0A 1A 0A, gano hotunan PNG, sannan sanya toshe "
source: budenet.ru