CVE-2014-9521
CVE-2014-9521 affects InfiniteWP Admin Panel (older than 2.4.4). The vulnerability is an unrestricted file upload in uploadScript.php when the allWPFiles parameter is set, enabling remote code execution by uploading a file with a double extension (e.g., .php.swp) and then invoking it via a direct...