Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackTom AdamsPATCHSTACK:DA1A030F08A7A29A451BBEEF2DACD81A
HistoryMar 19, 2014 - 12:00 a.m.

WordPress File Gallery Plugin <= 1.7.9.1 - Arbitrary Code Execution

2014-03-1900:00:00
Tom Adams
patchstack.com
6

EPSS

0.003

Percentile

70.6%

JSON

This plugin does not properly escape strings, which allows remote administrators to execute arbitrary PHP code.

Solution

           Update the plugin.

Related

wpvulndb 1
prion 1
cvelist 1
cve 1
nvd 1
wpvulndb
wpvulndb
File Gallery 1.7.9 - Settings Page create_function Function Remote Comm& Execution
2014-08-01 10:59:14
prion
prion
Design/Logic Flaw
2014-05-06 14:55:00
cvelist
cvelist
CVE-2014-2558
2014-05-06 14:00:00
cve
cve
CVE-2014-2558
2014-05-06 14:55:05
nvd
nvd
CVE-2014-2558
2014-05-06 14:55:05

EPSS

0.003

Percentile

70.6%

JSON
Related for PATCHSTACK:DA1A030F08A7A29A451BBEEF2DACD81A
wpvulndb1prion1cvelist1cve1nvd1