CVE-2015-1785
CVE-2015-1785 concerns the NextGEN Gallery WordPress plugin, affected when using versions prior to 2.0.77.3. The issues are two vulnerabilities enabling full web application access: (1) cross-site request forgery (CSRF) and (2) arbitrary file upload due to inadequate validation of user-uploaded f...