CVE-2015-5681
CVE-2015-5681 affects the WordPress Powerplay Gallery plugin, version 3.3. It describes an unrestricted file upload vulnerability in upload.php that allows a remote attacker to upload a file with an executable extension and then access it via a direct request to the file in *_uploadfolder/big/, p...