Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackEgiXPATCHSTACK:49D66EB0BCC91ECED531B90397D51A00
HistoryOct 08, 2012 - 12:00 a.m.

WordPress Kish Guest Posting Plugin <= 1.2 - Unrestricted File Upload

2012-10-0800:00:00
EgiX
patchstack.com
10

0.06 Low

EPSS

Percentile

93.5%

JSON

Because of this vulnerability in uploadify/scripts/uploadify.php, the attackers can execute arbitrary code by uploading a file with a double extension. After that they access it via a direct request to the file in the directory specified by the “folder” parameter.

Solution

           Update the plugin.
CPENameOperatorVersion
kish guest postingle1.2

Related

wpvulndb 1
prion 1
cvelist 1
nvd 1
cve 1
wpvulndb
wpvulndb
Kish Guest Posting 1.2 - Arbitrary File Upload
2014-08-01 10:58:45
prion
prion
Unrestricted file upload
2012-10-08 17:55:00
cvelist
cvelist
CVE-2012-5318
2022-10-03 16:15:31
nvd
nvd
CVE-2012-5318
2012-10-08 17:55:01
cve
cve
CVE-2012-5318
2022-10-03 16:15:31

0.06 Low

EPSS

Percentile

93.5%

JSON
Related for PATCHSTACK:49D66EB0BCC91ECED531B90397D51A00
wpvulndb1prion1cvelist1nvd1cve1