EPSS
Percentile
31.7%
The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files.
wordpress.org/plugins/wp-file-upload/#developers