2 matches found
CVE-2015-5682
The CVE concerns the WordPress Powerplay Gallery plugin, version 3.3, where upload.php allows remote attackers to create arbitrary directories through vectors related to the targetDir parameter. This is a remote, unauthenticated vulnerability that enables directory creation, potentially aiding fu...
CVE-2015-5682
upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable...