CVE-2012-3574
The CVE-2012-3574 issue affects the WordPress MM Forms Community plugin (versions 2.2.5 and 2.2.6). A flaw in includes/doajaxfileupload.php allows unrestricted/arbitrary file uploads, enabling remote code execution by uploading a file with an executable extension and validating it via a request t...