3 matches found
CVE-2020-36705
creationtimestamp| type| source ---|---|--- 2025-09-24 09:47:43+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/passive/cves/2020/CVE-2020-36705.yaml...
CVE-2020-36705
The Adning Advertising plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ninguploadimage function in versions up to, and including, 1.5.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites...
CVE-2020-36705
CVE-2020-36705 affects the WordPress Adning Advertising plugin up to version 1.5.5. The vulnerability stems from missing file-type validation in the internal _ning_upload_image function, allowing unauthenticated attackers to upload arbitrary files to the server, with the potential for remote code...