3 matches found
CVE-2012-10027
WP-Property plugin for WordPress through version 1.35.0 contains an unauthenticated file upload vulnerability in the third-party uploadify.php script. A remote attacker can upload arbitrary PHP files to a temporary directory without authentication, leading to remote code execution...
CVE-2012-10027
Summary: CVE-2012-10027 affects the WordPress WP-Property plugin up to version 1.35.0. The vulnerability is an unauthenticated file upload in the third-party uploadify.php, allowing an attacker to upload PHP files to a temporary directory and achieve remote code execution. Several connected sourc...
CVE-2012-10027 WordPress Plugin WP-Property <= 1.35.0 PHP File Upload
WP-Property plugin for WordPress up to and including version 1.35.0 contains an unauthenticated file upload vulnerability in the third-party uploadify.php script. A remote attacker can upload arbitrary PHP files to a temporary directory without authentication, leading to remote code execution...