关键信息 漏洞名称: WordPress Tainacan Plugin <= 0.21.14 is vulnerable to Arbitrary File Deletion 优先级: High priority CVSS评分: 8.6 受影响版本: <= 0.21.14 修复版本: 0.21.15 风险: This vulnerability is highly dangerous and expected to become mass exploited. 漏洞类型: Arbitrary File Deletion 描述: This could allow a malicious actor to delete files from your website. If core files are deleted from your website, it could cause your site to break and stop functioning. 解决方案: - Automatically mitigate vulnerabilities and keep your websites safe using Patchstack's virtual patch. - Update to version 0.21.15 or later. 时间线: - Reported by @astra/Sverri on 10 Apr 2023 - Early warning sent out to Patchstack customers on 10 May 2023 - Published by Patchstack on 18 May 2023