2 matches found
Wordpress Download Manager Plugin Arbitrary File Upload (CVE-2008-3362)
An Arbitrary File Upload vulnerability has been reported in Wordpress Download Manager Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2008-3362
CVE-2008-3362 affects the WordPress Download Manager plugin (version 0.2) distributing an unrestricted file upload in upload.php. An attacker can upload a file with an executable extension via the upfile parameter and then access it at wp-content/plugins/downloads-manager/upload/ to execute arbit...