Lucene search
PRIOn knowledge basePRION:CVE-2012-5318HistoryOct 08, 2012 - 5:55 p.m.
Unrestricted file upload
2012-10-0817:55:00
PRIOn knowledge base
www.prio-n.com
Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a file with a double extension, then accessing it via a direct request to the file in the directory specified by the folder parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1125.
| CPE | Name | Operator | Version |
|---|---|---|---|
| kish_guest_posting_plugin | eq | 1.2 |
Related
nvd
nvd
CVE-2012-5318
2012-10-08 17:55:01
CVE-2012-1125
2012-10-08 17:55:00
wpvulndb
wpvulndb
Kish Guest Posting 1.2 - Arbitrary File Upload
2014-08-01 10:58:45
cvelist
cvelist
CVE-2012-5318
2022-10-03 16:15:31
CVE-2012-1125
2012-10-08 17:00:00
cve
cve
CVE-2012-5318
2022-10-03 16:15:31
CVE-2012-1125
2012-10-08 17:55:00
patchstack
patchstack
WordPress Kish Guest Posting Plugin <= 1.2 - Unrestricted File Upload
2012-10-08 00:00:00
WordPress Kish Guest Posting Plugin 1.0 - Arbitrary File Upload
2012-01-23 00:00:00
prion
prion
Unrestricted file upload
2012-10-08 17:55:00