3 matches found
CVE-2008-5695
wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update an option, which allows remote authenticated users with manageoptions and uploadfiles capabilities to execute arbitrary code by uploading a PHP script and adding this...
CVE-2008-5695
wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update an option, which allows remote authenticated users with manageoptions and uploadfiles capabilities to execute arbitrary code by uploading a PHP script and adding this...
CVE-2008-5695
CVE-2008-5695 affects WordPress MU pre-1.3.2 and WordPress pre-2.3.2, where wp-admin/options.php fails to properly validate option update requests. This allows remote authenticated users with manage_options and upload_files to execute arbitrary code by uploading a PHP script and adding its pathna...