0.086 Low
EPSS
Percentile
94.5%
Because of this vulnerability, the attackers can execute arbitrary code by uploading a file with an executable extension using uploadify/upload_profile_avatar.php or uploadify/upload_admin_avatar.php.
Update the plugin.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5051