2 matches found
CVE-2015-1376
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wppixabayimagesupload.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:36+00:00| seen|...
CVE-2015-1376
The CVE concerns the WordPress Pixabay Images plugin, prior to version 2.4. It describes an arbitrary file write flaw where pixabay-images.php does not validate hostnames, allowing remote authenticated users to write files via an upload URL whose host is not pixabay.com. The issue stems from insu...