关键信息 漏洞名称: WordPress Opal Woo Custom Product Variation Plugin <= 1.2.0 is vulnerable to Arbitrary File Deletion 优先级: High priority CVSS评分: 8.6 风险: This vulnerability is highly dangerous and expected to become mass exploited. 受影响版本: <= 1.2.0 修复版本: 1.2.1 发布时间: 12 May 2025 by Patchstack 漏洞类型: Arbitrary File Deletion 描述: This could allow a malicious actor to delete files from your website. If core files are deleted from your website, it could cause your site to break and stop functioning. 解决方案: - Automatically mitigate vulnerabilities and keep your websites safe - Update to version 1.2.1 or later to remove the vulnerability. 时间线: - Reported by timomangout on 29 Apr 2025 - Early warning sent out to Patchstack customers on 12 May 2025 - Published by Patchstack on 14 May 2025