2 matches found
CVE-2009-2852
WP-Syntax plugin 0.9.1 and earlier for Wordpress, with registerglobals enabled, allows remote attackers to execute arbitrary PHP code via the testfilterwphead array parameter to test/index.php, which is used in a call to the calluserfuncarray function...
CVE-2009-2852
CVE-2009-2852 (WP-Syntax) affects WordPress WP-Syntax plugin versions