CVE-2020-25213
wp-file-manager 6.7 (20th Aug 2020) Wordpress Plugin 0day
elFinder vulnerability is a well-know vulnerability, my script only changes path to "/wp-content/plugins/wp-file-manager/". Stop requesting fixes in script or something else for me. RTFM...
References:
https://www.exploit-db.com/exploits/46481
https://www.exploit-db.com/exploits/46539
https://twitter.com/w4fz5uck5/status/1303396627198152707
https://wpvulndb.com/vulnerabilities/10389