Lucene search

K
prionPRIOn knowledge basePRION:CVE-2012-1011
HistoryFeb 07, 2012 - 9:55 p.m.

Directory traversal

2012-02-0721:55:00
PRIOn knowledge base
www.prio-n.com
3

8.2 High

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

actions.php in the AllWebMenus plugin 1.1.8 for WordPress allows remote attackers to bypass intended access restrictions to upload and execute arbitrary PHP code by setting the HTTP_REFERER to a certain value, then uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.

CPENameOperatorVersion
allwebmenus_plugineq1.1.8

8.2 High

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

Related for PRION:CVE-2012-1011