CVE-2015-9338
CVE-2015-9338 affects the WordPress wp-file-upload plugin prior to version 2.5.0. The vulnerability arises from insufficient restrictions on uploading PHP files, allowing potentially harmful PHP uploads through the plugin. Affected product is the wp-file-upload plugin for WordPress; root cause is...